Re: Re: OpenVPN configuration

Home Page Forums Network Management ZeroShell OpenVPN configuration Re: Re: OpenVPN configuration

#45267

imported_fulvio
Participant

@level323 wrote:

2. Configure the ZeroShell OpenVPN server with params:
* –float –server-bridge 10.0.1.1 255.255.255.0 10.0.1.241 10.0.1.249
and on the ZeroShell (server side):
* Do not assign any IP address to VPN00
* Create a BRIDGE between VPN00 and ETH00 on the ZeroShell via the ZeroShell web-based admin interface.
To my understanding, this should be the correct recipe, as it will cause ethernet packets moving through the tunnel to be connected to the LAN side of the ZeroShell firewall……

This is the right approach, but there is only a problem:
when you include the ETH00 in the BRIDGE00 interface, the IP address 10.0.1.1 does not automatically migrate from the ETH00 to the BRIDGE00 and hence you lose the connectivity. You can solve the issue by using the console to create the bridge (read the FAQ http://www.zeroshell.net/eng/faq/network/#net.faq4) or adding the IP 10.0.1.1 to the BRIDGE00 interface if you are able to contact the web GUI of Zeroshell from another interface. In any case, you don’t need to use the OpenVPN parameter
–server-bridge 10.0.1.1 255.255.255.0 10.0.1.241 10.0.1.249

Regards
Fulvio