I have configured two routers, so they establish VPN connection with each other. Router #1 has subnet: 192.168.0.0/24 Router #2 has subnet: 192.168.1.0/24 The problem is, that router #1 does not route packets from vpn01 to eth1 - that works fine on router #2. So, i can ping all hosts on the second lan from router #1, but i am unable to ping the first lan from router #2. Outputs (ip ro show): ROUTER #1: 213.250.19.90 dev ppp0 proto kernel scope link src 193.77.XXX.XXX 192.168.0.0/24 dev eth1 proto kernel scope link src 192.168.0.1 192.168.0.0/16 dev vpn01 proto kernel scope link src 192.168.0.1 127.0.0.0/8 via 127.0.0.1 dev lo scope link ROUTER #2: 213.250.19.90 dev ppp0 proto kernel scope link src 193.77.XXX.XXX 192.168.1.0/24 dev eth0 proto kernel scope link src 192.168.1.1 192.168.0.0/16 dev vpn01 proto kernel scope link src 192.168.1.1 127.0.0.0/8 via 127.0.0.1 dev lo scope link default via 213.250.19.90 dev ppp0 Regards, Kostko. -- Kostko <kostko@jweb-network.net> JWeb-Network Tinc: Discussion list about the tinc VPN daemon Archive: http://mail.nl.linux.org/lists/ Tinc site: http://tinc.nl.linux.org/
On Tue, Nov 25, 2003 at 07:26:57PM +0100, Kostko wrote:> The problem is, that router #1 does not route packets from vpn01 to eth1 > - that works fine on router #2. So, i can ping all hosts on the second > lan from router #1, but i am unable to ping the first lan from router #2.Is forwarding enabled (echo 1 >/proc/sys/net/ipv4/forwarding)? Do you have firewall rules preventing forwarding? -- Met vriendelijke groet / with kind regards, Guus Sliepen <guus@sliepen.eu.org> -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: Digital signature Url : http://brouwer.uvt.nl/pipermail/tinc/attachments/20031125/bcf28fbd/attachment.pgp