On Sun, Apr 14, 2013 at 09:00:16AM -0400, Boris Epstein wrote:
Let's say I have an OpenVPN (v2) server sitting on a Linux machine with the IP address of, say, 192.168.10.1o. We are talking real address, assigned to a NIC on the machine.
Now let us say the OpenVPN server hands out IP's in the 192.168.20.0/24range. And let us say that I want the machines able to reach the VPN server to be able to route to the machines available via the VPN. So, for instance, 192.168.10.5 should be able to ping 192.168.20.6 assuming the latter is one of the VPN clients.
So here is my question: is there a VPN setting that would facilitate that?
In the server config file push "route 192.168.10.0 255.255.255.0"
That will tell the openvpn client to add a route to 192.168.10.0/24 via the openvpn gateway.
Machines on the LAN also need a route to 192.168.20.0/24 via the gateway; this is easy if your OpenVPN server is also your default gateway (eg router); otherwise you may need to add routes per-machine or via DHCP, or potentially just tell the default router about the route and let it send redirects to the LAN machines.