我想允许所有的OpenVPN客户端到达其中一个VPN客户端的LAN。 不幸的是ping 192.168.10.11不起作用。 sudo tcpdump -nni tun0 icmp显示没有stream量到达10.188.0.24网关(目标LAN和OpenVPN中的客户端)。 否则,所有客户端都可以使用10.188.0.0networking互相访问。 任何提示将不胜感激。
为server.conf:
cipher AES-256-CBC script-security 2 port 1194 proto tcp dev tun ca ca.crt cert apache.crt key apache.key # This file should be kept secret dh dh2048.pem topology subnet server 10.188.0.0 255.255.255.0 ifconfig-pool-persist ipp.txt client-config-dir ccd client-to-client push "topology subnet" push "route-gateway 10.8.0.1" push "route 192.168.10.0 255.255.255.0" route 192.168.10.0 255.255.255.0 10.188.0.24 keepalive 10 120 comp-lzo no persist-key persist-tun status openvpn-status.log verb 3 sndbuf 0 rcvbuf 0 我的client.conf
client cipher AES-256-CBC dev tun proto tcp remote xxx.xxx.xxx.xx 1194 resolv-retry infinite nobind persist-key persist-tun ca /tmp/openvpn/ca.crt cert /tmp/openvpn/cert.pem key /tmp/openvpn/key.pem comp-lzo no verb 3 0.0.0.0 xx.xx.xx.xx 0.0.0.0 UG 0 0 0 eth0 10.188.0.0 0.0.0.0 255.255.255.0 U 0 0 0 tun0 192.168.10.0 10.188.0.24 255.255.255.0 UG 0 0 0 tun0