Network client is the same from server (solution)
Tiago Cruz
tiagocruz at b4br.net
Thu Mar 9 13:44:19 UTC 2006
Some months after, I'm here back to say the solution:
I did this in my default gateway master (192.168.0.0/22) with CARP
(firewall fail over):
Firewall Rules:
==============
vpn2 = "tun0"
...
set loginterface $vpn2
...
binat on $vpn2 from 192.168.0.0/22 to any -> 192.168.8.0/22
...
pass in on $vpn from any to any keep state
pass out on $vpn from any to any keep state
Client: Windows XP (192.168.0.0/24) with OpenVPN (10.5.0.0/24):
SO, the client need to ping the host 192.168.8.32 to get reply from
192.168.0.8.
Is working now :-)
Logs:
54. 224700 rule 26/0(match): pass in on tun0: 10.5.0.6 > 192.168.0.32:
ICMP echo request, id 1024, seq 13568, length 40
Thank you,
Hope that help somebody.
--
Tiago Cruz
http://linuxrapido.org
More information about the freebsd-net
mailing list