Re: VPN - almost got it

To: "D'Arcy Cain" <darcy%NetBSD.org@localhost>
Subject: Re: VPN - almost got it
From: gary%duzan.org@localhost
Date: Wed, 13 Sep 2017 12:16:17 -0400

"D'Arcy Cain" <darcy%NetBSD.org@localhost> wrote:
=> I am trying to set up a VPN between two NetBSD boxes, one of which has a
=> public address.  Here is what I do on the public machine in rc.local:
=>
=> ifconfig tun0 create
=> ifconfig tun0 10.0.0.1 10.0.0.2 netmask 0xfffffffc
=> route add 10.0.0.2/32 10.0.0.1 # should this be necessary?
=> route add 192.168.215.0/24 10.0.0.2
=>
=> On the internal machine I do this:
=>
=> ifconfig tun0 create
=> ifconfig tun0 10.0.0.2 10.0.0.1 netmask 0xfffffffc
=> route add 10.0.0.1/32 10.0.0.2 # should this be necessary?
=> route add 192.168.0.0/24 10.0.0.1
=> /usr/bin/ssh -f -w 0:0 queen.vex.net true
=>
=> The IP address of the first machine is 192.168.0.57 and I can get there
=> fine from any machine in the 215 network.  However I can't get to any
=> other machine on the 0 side.  Both machines show "net.inet.ip.forwarding
=> = 1".  Am I missing something else?

   Do the other machines on the 0 side have a route through their tunnel
endpoint machine?

                               Gary Duzan

References:
- VPN - almost got it
  - From: D'Arcy Cain

Prev by Date: VPN - almost got it
Next by Date: Re: VPN - almost got it
Previous by Thread: VPN - almost got it
Next by Thread: Re: VPN - almost got it
Indexes:

Home | Main Index | Thread Index | Old Index