setup openvpn to access the client's lan

eldragon · 2012-01-10 12:08:11

i have the following topology: http://imgur.com/ANEtu

i want to be able to access 10.20.30.2 from the server.

restrictions:

- 10.20.30.2 cannot be modified in any way
- VPN client is windows.

is this possible?

fukawi2 · 2012-01-10 22:29:45

Yes.

eldragon · 2012-01-11 16:49:50

fukawi2 wrote:

Yes.

care to explain how?

i have no access to the default gateway in the client's lan.

is it possible to use the client's lan dhcp server to asign the ips?

fukawi2 · 2012-01-11 22:12:51

You haven't explained the diagram or your setup very well.... I'm going to assume that:
1. Address 10.20.30.2 = Client's Default Gateway.
2. You are using a routed style OpenVPN configuration.

Enabling routing and configuring a Source NAT (SNAT) on the client to make all the routed traffic appear to come from 10.20.30.3

You will need to put a route on the server for 10.20.30.x (I'm assuming it's a /24 network) via the VPN tunnel so it knows where to find that address space.

Of course you will lose visibility on 10.20.30.2 as to whether it is actually the client, or the server 'behind' the client that traffic originates from.

Also, I don't know how to put a SNAT on Windows. AFAIK there is no native way to do it, but I'm sure *someone* somewhere has written something to do it.

Last edited by fukawi2 (2012-01-11 22:13:38)

Arch Linux

#1 2012-01-10 12:08:11

setup openvpn to access the client's lan

#2 2012-01-10 22:29:45

Re: setup openvpn to access the client's lan

#3 2012-01-11 16:49:50

Re: setup openvpn to access the client's lan

#4 2012-01-11 22:12:51

Re: setup openvpn to access the client's lan

Board footer