Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!

Sign In Register

Quick Links


Categories

Openvpn routing all the web traffic from VPN server and client reach LAN
New on LowEndTalk? Please Register and read our Community Rules.

All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.

Openvpn routing all the web traffic from VPN server and client reach LAN

mrskymrsky Member
edited December 2016 in General

Hi all,

I have a Openvpn server running on a raspberry pi 2 with the following configs

I can achieve the connection and the client can reach LAN.

However, when client is active, he can't access internet and surf as normal...

Any help?

server.conf

port 1194 proto udp dev tun ca ca.crt cert avg.crt key avg.key dh dh2048.pem server 10.9.0.0 255.255.255.0 ifconfig-pool-persist ipp.txt keepalive 10 120 comp-lzo persist-key persist-tun status openvpn-status.log log openvpnauto.log verb 3 push "redirect-gateway def1 bypass-dhcp" push "dhcp-option DNS 8.8.8.8" push "dhcp-option DNS 8.8.4.4" ifconfig 10.9.0.1 10.9.0.2 push "route 10.9.0.1 255.255.255.255" push "route 10.9.0.0 255.255.255.0" push "route 192.168.1.99 255.255.255.255"

client

client dev tun proto udp resolv-retry infinite nobind persist-key persist-tun ca /etc/openvpn/easy-rsa/keys/ca.crt cert /etc/openvpn/easy-rsa/keys/avg.crt key /etc/openvpn/easy-rsa/keys/avg.key log /etc/openvpn/avg.log ns-cert-type server cipher bf-cbc comp-lzo verb 3
ifconfig

root@rpiavg:~# ifconfig eth0 Link encap:Ethernet HWaddr b9:28:eb:e1:5d:4e inet addr:192.168.1.99 Bcast:192.168.1.255 Mask:255.255.255.0 inet6 addr: fe80::XXX:XXXX:7e17:858e/64 Scope:Link UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:74312 errors:0 dropped:1207 overruns:0 frame:0 TX packets:5150 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:6049242 (5.7 MiB) TX bytes:989860 (966.6 KiB) lo Link encap:Local Loopback inet addr:127.0.0.1 Mask:255.0.0.0 inet6 addr: ::1/128 Scope:Host UP LOOPBACK RUNNING MTU:65536 Metric:1 RX packets:18 errors:0 dropped:0 overruns:0 frame:0 TX packets:18 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1 RX bytes:1882 (1.8 KiB) TX bytes:1882 (1.8 KiB) tun0 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00 inet addr:10.9.0.1 P-t-P:10.9.0.2 Mask:255.255.255.255 UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1500 Metric:1 RX packets:2374 errors:0 dropped:0 overruns:0 frame:0 TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:100 RX bytes:353778 (345.4 KiB) TX bytes:0 (0.0 B)

root@rpiavg:~# iptables -t nat -L Chain PREROUTING (policy ACCEPT) target prot opt source destination Chain INPUT (policy ACCEPT) target prot opt source destination Chain OUTPUT (policy ACCEPT) target prot opt source destination Chain POSTROUTING (policy ACCEPT) target prot opt source destination MASQUERADE all -- anywhere anywhere

Thanked by 1PieHasBeenEaten
Sign In or Register to comment.