Hello, i’m trying to move configuration from 1.2 to 1.4 and can’t understand why client didn’t see LAN.
show interfaces openvpn vtun94
device-type tap
local-port 9001
mode server
persistent-tunnel
protocol udp
server {
client-ip-pool {
start 10.1.4.240
stop 10.1.4.245
}
push-route 10.1.5.0/24 {
metric 1
}
push-route 10.2.4.0/24 {
metric 1
}
push-route 10.3.4.0/24 {
metric 1
}
subnet 10.1.4.0/24
topology subnet
}
tls {
ca-certificate DCin
certificate DCinSrv
dh-params DCin-DH
}
use-lzo-compression
show interfaces bridge br94
address 10.1.4.1/24
aging 300
hello-time 2
ip {
disable-arp-filter
}
max-age 20
member {
interface eth0.94 {
}
interface vtun94 {
}
}
priority 0
show interfaces ethernet eth0 vif 94
description Brn-DCin-94
And with this config client get IP 10.1.4.240, can ping 10.1.4.1, can ping other IPs that should be routed (10.1.5.0/24, 10.2.4.0/24, 10.3.4.0/24), BUT can’t ping IPs in 10.1.4.0/24 LAN.
Why? What’s wrong with it? When i open tcpdump on 10.1.4.251 and starts pinging from OVPN client 10.1.4.240 LAN IP (10.1.4.251), i got:
sudo tcpdump -i eth0.94 -vvv icmp
tcpdump: listening on eth0.94, link-type EN10MB (Ethernet), capture size 262144 bytes
07:41:09.249736 IP (tos 0x0, ttl 63, id 36782, offset 0, flags [none], proto ICMP (1), length 60)
10.1.4.240 > 10.1.4.251: ICMP echo request, id 1, seq 648, length 40
and zero reply’s…
sudo arp -a
....
? (10.1.4.240) at <incomplete> on eth0.94
....
