SuSE linux network problems ask for help!

swizard · May 31, 2011, 10:41am

http://life.chinaunix.net/bbsfile/month_1105/1105301031120fffc1f651d750.jpg
Hi all,
I’m now setting up an environment like above picture. I installed and configured OpenVPN server on server A. I want to use OpenVPN client to connect to Server A and the access 10.128.1.x through IPsec.
After OpenVPN started up, the Server A’s private ip is 192.168.10.1. I ran ‘ip route add 10.128.1.0/24 dev eth0 src 192.168.10.1’. I can ping 10.128.1.1 with IPsec protocol. But I can’t ping 10.128.1.1 through VPN client.
Anybody can give me some advices on how to set route or SuSEfirewall2 ?
Thanks a lot!

glistwan · May 31, 2011, 10:50am

You are aware that openvpn does not use IPsec ?

From your description I believe that server A is running openSUSE with opsenVPN access server package installed ?

I have some experience with setting up openVPN access server on CentOS and You don’t have to add any routes manually using the CLI. Almost everything can be done using the openVPN access server web GUI. I think that SuSEfirewall2 might not be compatible with what openVPN access server is trying to do with your iptables.

This link might be a very helpful read :
http://openvpn.net/index.php/access-server/docs/admin-guides/187-how-to-disable-iptables-modification-by-access-server.html

Why are You using openSUSE for this ? There are no official packages for openSUSE on the openVPN web site.

Best regards,
Greg

swizard · May 31, 2011, 11:11am

Hi Greg,

Thanks for you reply.

Suse linux is required in my environment. My problem is I can’t ping 10.128.1.1 from 192.168.10.x. I think it was not routed or forwarded correctly.
Let me try access server. It’s a separated module? I only installed openvpn-2.1.4.tar.gz.

glistwan · May 31, 2011, 11:35am

This is the openVPN client. How do You set up the openVPN tunnel between the PC and server A ? Normally You need openVPN Access Server installed on server A and openVPN client on the PC.

DenverD · May 31, 2011, 11:52am

On 05/31/2011 11:36 AM, swizard wrote:
>
> Suse linux is required in my environment.

you say “Suse linux” and Greg says “openSUSE”, they are not the same…

this is the forum for openSUSE, you are welcome to ask here but be
advised that if you are using SUSE Linux Enterprise Server or SUSE
Linux Enterprise Desktop the best place to ask, and the folks you have
a license with are at http://forums.novell.com

i don’t know about Greg, but i know that there are many many folks here
who have never run “SUSE Linux” so . . . so, maybe he gives you exactly
what you need…so far it sounds like he knows a LOT more than me about
it and i am NOT saying don’t listen to him…instead i’m just informing
that maybe you wandered into the wrong forum, the novell forum sign in
uses the same ID/Pass as you used here…and, maybe the answer you get
from him is perfect for openSUSE, but not so good for SUSE Linux…

to know for sure what you are running, this in a terminal will tell:


cat /etc/SuSE-release

mine says:
openSUSE 11.4 (i586)
VERSION = 11.4
CODENAME = Celadon

–
dd CAVEAT: http://is.gd/bpoMD
[NNTP via openSUSE 11.4 [2.6.37.6-0.5] + KDE 4.6.0 + Thunderbird 3.1.10]
Dual booting with Sluggish Loser7 on Acer Aspire One D255