我的问题是:
有4个路由器,并与openvpn(tun)连接。 r1 / r2是ubuntu,并在AWS EC2中运行。 r3 / r4是在ESXi VM中运行的pfsense。
R1:
eth0: 10.5.1.8/24 tun0: 10.15.0.1 (to r2 tun0) tun1: 10.15.1.1 (to r3 ovpnc1) R2:
eth0: 10.5.2.9/24 tun0: 10.15.0.2 (to r1 tun0) tun1: 10.15.1.13 (to r4 opvnc1)
R3:
em0: 192.168.91.1/24 (CARP IP: 192.168.91.3) em1: 10.15.11.1 (PFSYNC interface, connect to r4 by dedicate vlan) ovpnc1: 10.15.1.2 (to r1)
R4:
em0: 192.168.91.2/24 (CARP IP: 192.168.91.3) em1: 10.15.11.2 (PFSYNC interface, connect to r3 by dedicate vlan) ovpnc1: 10.15.1.14 (to r2) r1 -tun - r2 | | tun tun | | r3 -vlan- r4
PS:因为r1和r2在AWS中运行,所以r1(10.5.1.0/24)到r2(10.5.2.0/24)正在使用AWS VPN路由器(10.5.1.1)。
所有路由器都运行OSPF。
细节:
从r1 ping:
r2(10.5.2.9): success r2(10.15.0.2): success r3(192.168.91.1): success r3(10.15.1.2): success r4(192.168.91.2): **success, but will lost the first ping packet(always)** r4(10.15.1.14): success, no packet loss
从r2 ping:
r1(10.5.1.8): success r1(10.15.0.1): success r3(192.168.91.1): **success, the first packet loss too** r3(10.15.1.2): success, no packet loss r4(192.168.91.2): success r4(10.15.1.14): success
从r3 ping:
r1(10.5.1.8): success r1(10.15.1.1): success r2(10.5.2.9): **FAILED, cannot ping** r2(10.15.0.2): success r2(10.15.1.13): success r4(192.168.91.2): success r4(10.15.11.2): success
从r4 ping:
r1(10.5.1.8): **FAILED, cannot ping** r1(10.15.0.1): success r1(10.15.1.1): success r2(10.5.2.9): success r2(10.15.1.13): success r3(192.168.91.1): success r3(10.15.11.1): success