VPN - almost got it

To: netbsd-users%netbsd.org@localhost
Subject: VPN - almost got it
From: D'Arcy Cain <darcy%NetBSD.org@localhost>
Date: Wed, 13 Sep 2017 11:59:36 -0400

I am trying to set up a VPN between two NetBSD boxes, one of which has apublic address. Here is what I do on the public machine in rc.local:


ifconfig tun0 create
ifconfig tun0 10.0.0.1 10.0.0.2 netmask 0xfffffffc
route add 10.0.0.2/32 10.0.0.1 # should this be necessary?
route add 192.168.215.0/24 10.0.0.2

On the internal machine I do this:

ifconfig tun0 create
ifconfig tun0 10.0.0.2 10.0.0.1 netmask 0xfffffffc
route add 10.0.0.1/32 10.0.0.2 # should this be necessary?
route add 192.168.0.0/24 10.0.0.1
/usr/bin/ssh -f -w 0:0 queen.vex.net true

The IP address of the first machine is 192.168.0.57 and I can get therefine from any machine in the 215 network. However I can't get to anyother machine on the 0 side. Both machines show "net.inet.ip.forwarding= 1". Am I missing something else?


Cheers.

--
D'Arcy J.M. Cain <darcy%NetBSD.org@localhost>
http://www.NetBSD.org/ IM:darcy%Vex.Net@localhost

Follow-Ups:
- Re: VPN - almost got it
  - From: Andy Ruhl
- Re: VPN - almost got it
  - From: gary

Prev by Date: Re: dhcpcd and multiple IPv6 gateways on one interface
Next by Date: Re: VPN - almost got it
Previous by Thread: kgdb
Next by Thread: Re: VPN - almost got it
Indexes:

Home | Main Index | Thread Index | Old Index