From owner-freebsd-questions@FreeBSD.ORG Tue Apr 26 06:07:12 2011 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 84B7E106566C for ; Tue, 26 Apr 2011 06:07:12 +0000 (UTC) (envelope-from milu@dat.pl) Received: from jab.dat.pl (dat.pl [80.51.155.34]) by mx1.freebsd.org (Postfix) with ESMTP id 3DD1F8FC13 for ; Tue, 26 Apr 2011 06:07:12 +0000 (UTC) Received: from jab.dat.pl (jsrv.dat.pl [127.0.0.1]) by jab.dat.pl (Postfix) with ESMTP id 8AB7F37; Tue, 26 Apr 2011 08:07:10 +0200 (CEST) X-Virus-Scanned: amavisd-new at dat.pl Received: from jab.dat.pl ([127.0.0.1]) by jab.dat.pl (jab.dat.pl [127.0.0.1]) (amavisd-new, port 10024) with LMTP id LfS8iLUQB-F4; Tue, 26 Apr 2011 08:07:05 +0200 (CEST) Received: from snifi.localnet (87-205-87-136.adsl.inetia.pl [87.205.87.136]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by jab.dat.pl (Postfix) with ESMTPSA id 4C4B228; Tue, 26 Apr 2011 08:07:05 +0200 (CEST) From: Maciej Milewski To: Ryan Coleman Date: Tue, 26 Apr 2011 08:07:32 +0200 User-Agent: KMail/1.13.6 (Linux/2.6.38-ARCH; KDE/4.6.2; x86_64; ; ) References: <6073BC9F-553D-41E2-AE42-341B61850EA7@cwis.biz> <5677ADC4-3BE8-46C0-8C19-C893276B79FE@d3photography.com> In-Reply-To: <5677ADC4-3BE8-46C0-8C19-C893276B79FE@d3photography.com> MIME-Version: 1.0 Content-Type: Text/Plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Message-Id: <201104260807.32541.milu@dat.pl> Cc: freebsd-questions@freebsd.org Subject: Re: OpenVPN routing X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 26 Apr 2011 06:07:12 -0000 On Tuesday 26 of April 2011 04:38:29, Ryan Coleman wrote: > Also: > [root@nbserver1 /usr/home/ryanc]# ifconfig > em0: flags=3D8943 metric 0 > mtu 1500 options=3D98 > ether 00:14:22:15:dc:65 > inet 192.168.46.2 netmask 0xffffff00 broadcast 192.168.46.255 > media: Ethernet autoselect (1000baseT ) > status: active > tap0: flags=3D8943 metric= 0 > mtu 1500 options=3D80000 > ether 00:bd:7e:86:1d:00 > inet 192.168.47.1 netmask 0xffffff00 broadcast 192.168.47.255 > Opened by PID 10341 > bridge0: flags=3D8843 metric 0 mtu > 1500 ether 46:e1:75:c6:a3:a7 > inet 192.168.47.254 netmask 0xffffff00 broadcast 192.168.47.255 > id 00:00:00:00:00:00 priority 32768 hellotime 2 fwddelay 15 > maxage 20 holdcnt 6 proto rstp maxaddr 100 timeout 1200 > root id 00:00:00:00:00:00 priority 32768 ifcost 0 port 0 > member: tap0 flags=3D143 > ifmaxaddr 0 port 5 priority 128 path cost 2000000 > member: em0 flags=3D143 > ifmaxaddr 0 port 1 priority 128 path cost 20000 >=20 > On Apr 25, 2011, at 9:36 PM, Ryan Coleman wrote: > > I've got an OpenVPN connection working to my remote server, but I want = to > > route the traffic to the local LAN. > >=20 > > I have a bridge set up, pingable... but can't ping the em1 (192.168.46.= 2) > > from the remote machine. > >=20 > > Server.conf: =2E.. > > server 192.168.47.0 255.255.255.0 =46rom the man openvpn(8): Don't use --server if you are ethernet bridging. Use --serv= er- bridge instead. And additionally bridging means that you have to divide your local=20 subnet(192.168.46.0/24) into two parts. Please have a look for the example = at=20 [1]. You may even not need bridging if you want to use two subnets of /24. Have = you=20 tried with standard setup(server) and configuring your default gateway(I=20 suspect 192.168.46.1) with the routing information about openvpn subnet=20 192.168.47.0/24? [1] http://openvpn.net/index.php/open-source/documentation/miscellaneous/76- ethernet-bridging.html Maciej Milewski