Page 1 of 1
site to site VPN
Posted: Sun Mar 27, 2016 4:57 pm
by Tokei
Dear all,
thank you for the amazing work, and hopefully you can help me or guide me in some direction for the following problem:
i have a wr1043nd as vpn server 10.8.0.1 / 192.168.1.1
and a remote wr1043nd as vpn client 10.8.0.6 / 192.168.11.0
the problem is, the computers on the network 11.0 can ping all the computers on the network 1.0
but, the computers on the network 1.0 can not ping 11.0 network. the computers on the 1.0 network can only ping the 10.8.0.6
how can the vpn server be aware of the network 11.0 behind the vpn client 10.8.0.6?
how to implement that route?
thanks in advance
Paulo
Re: site to site VPN
Posted: Sun Mar 27, 2016 5:34 pm
by Tokei
i forgot to mention.... both routers have gargoyle 1.7.1
thanks
Re: site to site VPN
Posted: Mon Mar 28, 2016 6:20 pm
by Tokei
Anyone?
or maybe you didn't understand the issue?
how to have the hosts on main site network 192.168.1.0/24 to ping the hosts on the remote site network 192.168.11.0/24
hope that you can share your routing skills
Paulo
Re: site to site VPN
Posted: Tue Mar 29, 2016 5:07 am
by ispyisail
yes
Its a known problem
I would also like to see it work
One of the very first VPN builds worked (a very long time ago)
Re: site to site VPN
Posted: Wed Mar 30, 2016 5:11 am
by Tokei
The thing is that gargoyle has only one option to add a client vpn, and is using it for a site2site vpn as if it was a single computer.
there is the need to specify if it a single client or site2site vpn so that we can type the network behind the remote vpn site.
until such layout is done, i guess the only option is to add the route manually.
something like this?
192.168.11.0/24 tun0 10.8.0.6
what do you think?
Re: site to site VPN
Posted: Wed Mar 30, 2016 5:48 am
by Lantis
do some experimenting and get back to us. if you can come up with explanations and suggestions for how you think the layout should be changed i'm more than happy to listen.
however, i know nothing about VPN! So i'd probably not implement the changes my self but i can look into it.
Re: site to site VPN
Posted: Fri Apr 01, 2016 8:58 pm
by Tokei
i found one more post with the same problem
viewtopic.php?f=11&t=4880
aparently when we create the client with option "Subnet behind client", that option is not creating the static route.
and if i try to do that static route on the route gui, i only have interfaces: Wan and LAN. I think the interface TUN is missing on the GUI.
Paulo
Re: site to site VPN
Posted: Sat Apr 02, 2016 6:14 am
by Tokei
everything is working now....
i checked the server.conf file and routing was already there, so i just needed to restart the router for the routing table to work.
Re: site to site VPN
Posted: Sat Apr 02, 2016 2:57 pm
by ispyisail
Tokei wrote:everything is working now....
i checked the server.conf file and routing was already there, so i just needed to restart the router for the routing table to work.
Can you paste your changes
Thanks