[TriLUG] OpenVPN and IP routing
Jarod Watkins
jarod at jxxtech.net
Tue Oct 28 13:54:25 EDT 2008
You can set a directive on the OpenVPN server to force all traffic on
the client side through the VPN.
http://openvpn.net/index.php/documentation/howto.html#redirect
James Tuttle wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> I've been working on configuring OpenVPN server on my Ubuntu desktop at
> work and the client on my laptop. SSH -D isn't doing it for me and the
> NC State VPN pushes split tunnels, which doesn't protect me while using
> unsecured networks (like the NC State wireless).
>
> So, I can connect the client just fine and get an IP address from the
> server. I can ping the VPN server through the VPN tunnel at 10.8.0.1.
> Here is the routing table after connection.
>
> Destination Gateway Genmask Flags Metric Ref Use
> Iface
> zilch.lib. * 255.255.255.255 UH 0 0 0 eth0
> 10.8.0.0 * 255.255.255.0 U 0 0 0 tun0
> 152.1.191.0 * 255.255.255.0 U 1 0 0 eth0
> default ithub-6509-vl12 0.0.0.0 UG 0 0 0 eth0
>
> zilch.ncsu.edu is the hostname of the VPN server.
> 10.8.0.0 is the VPN network
> 152.1.0.0 is the network zilch is on.
>
> So, it seems like I need to add a default route for all traffic to be
> routed onto the 10.8.0.0/tun0 tunnel and to delete the default/ithub
> route. The documentation is confusing me.
>
> Can anyone provide some advice?
>
> Thanks,
> Jim
>
> - --
> - --
> - ---Jim Tuttle
> - ------------------------------------------------------
> http://www.braggtown.com
> PGP Key: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x69B69B08
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.9 (GNU/Linux)
> Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
>
> iEYEARECAAYFAkkHUQcACgkQm4WzRNwT+xlO0ACfUAJwV646X1ghO2g3m0WwdmdL
> cqoAn21RxEi9PyDB4GgDfnOm2FxSa/ic
> =X7aw
> -----END PGP SIGNATURE-----
More information about the TriLUG
mailing list