can OpenVPN be used without route?

Home Page Forums Network Management ZeroShell can OpenVPN be used without route?

This topic contains 2 replies, has 0 voices, and was last updated by  scegg 10 years, 2 months ago.

Viewing 4 posts - 1 through 4 (of 4 total)
  • Author
    Posts
  • #41644

    scegg
    Participant

    Hi.

    I’m just a new user of OpenVPN.

    My scenario is:
    I have lots of end computers which can directly dial to internet. I have one LAN includes many servers and a ZeroShell.

    I want to setup a OpenVPN server on ZeroShell in order to make end computers dial in. Each of the end computers can visit internet with its own internet link, not though ZeroShell, and also can visit servers in the LAN at the same time.

    It that posible? How to setup? Thanks.

    #48033

    imported_fulvio
    Participant

    You should just use the [Net] button to add the IP subnets to be tunneled in the VPN. If you do not do this all traffic is tunneled and routed by the VPN box.

    Regards
    Fulvio

    #48034

    scegg
    Participant

    Thanks for your reply.
    My network:

    Server Lan: 10.252.252.0/24
    ETH00: 10.252.252.252 Mask 255.255.255.0
    VPN99: 10.252.251.254 Mask 255.255.255.0

    OpenVPN: 10.252.251.1 – 10.252.251.253
    Mask 255.255.255.0
    Gateway: 10.252.251.254
    Source NAT enabled.

    I added 10.252.252.0/24 in “IP Traffic to tunnel through VPN”.

    Now, end computer can dial in, and the route of internet accessing is right. But it cannot access my servers in Server Lan. Andalso, cannot Ping to 10.252.251.254.

    How to fix it?

    Or, is that possible to make the VPN clients in the same subnet of my server lan without gateway?

    Thanks.

    #48035

    riccardod
    Member

    From what I understood from your message in your lan zeroshell doesen’t act as default router/gateway, but as a “vpn appliance” (10.252.252.252 is not the default gateway of your lan). In this case you need to tell to your router (not in zeroshell) that for subnet 10.252.251.0 must use the gateway 10.252.252.252 adding a static route (something like 10.252.251.0/255.255.255.0 gw 10.252.252.252). You can even add this route only in the single pc (the server) if it’s the only one to reach (how to add a route to a windows pc: http://www.howtogeek.com/howto/windows/adding-a-tcpip-route-to-the-windows-routing-table/)
    hope it will help, ciao
    Ric

Viewing 4 posts - 1 through 4 (of 4 total)

You must be logged in to reply to this topic.