Re: VPN - almost got it

To: Andy Ruhl <acruhl%gmail.com@localhost>
Subject: Re: VPN - almost got it
From: D'Arcy Cain <darcy%NetBSD.org@localhost>
Date: Thu, 14 Sep 2017 05:27:52 -0400

On 09/13/2017 01:54 PM, Andy Ruhl wrote:

On Wed, Sep 13, 2017 at 8:59 AM, D'Arcy Cain <darcy%netbsd.org@localhost> wrote:

ifconfig tun0 create
ifconfig tun0 10.0.0.1 10.0.0.2 netmask 0xfffffffc
route add 10.0.0.2/32 10.0.0.1 # should this be necessary?
route add 192.168.215.0/24 10.0.0.2

On the internal machine I do this:

ifconfig tun0 create
ifconfig tun0 10.0.0.2 10.0.0.1 netmask 0xfffffffc
route add 10.0.0.1/32 10.0.0.2 # should this be necessary?
route add 192.168.0.0/24 10.0.0.1
/usr/bin/ssh -f -w 0:0 queen.vex.net true


Those static routes shouldn't be necessary, the 2 tun interfaces are
in the same subnet so no routing is needed.


Thanks.  I only added them as an experiment.

Sorry, can't help with the rest, I haven't done this in NetBSD.

That's OK. I figured it out. The machine doing the VPN was not thegateway. I just had to add a route on the gateway back to the VPNmachine for that subnet.


Thanks.

--
D'Arcy J.M. Cain <darcy%NetBSD.org@localhost>
http://www.NetBSD.org/ IM:darcy%Vex.Net@localhost

References:
- VPN - almost got it
  - From: D'Arcy Cain
- Re: VPN - almost got it
  - From: Andy Ruhl

Prev by Date: analyzing cores on a different computer
Next by Date: Re: NetBSD, ipv6, and linode
Previous by Thread: Re: VPN - almost got it
Next by Thread: analyzing cores on a different computer
Indexes:

Home | Main Index | Thread Index | Old Index