[CentOS] openvpn + routing

Axel Glienke

axel at glienke.cc
Sun Dec 6 19:26:57 UTC 2015


Hello,

i have a little question.

My system:

ip route:
0.0.0.0/1 via 10.8.0.5 dev tun0
default via 192.168.2.1 dev br0  proto static  metric 425
10.8.0.1 via 10.8.0.5 dev tun0
10.8.0.5 dev tun0  proto kernel  scope link  src 10.8.0.6
88.198.140.127 via 192.168.2.1 dev br0
192.168.2.0/24 dev br0  proto kernel  scope link  src 192.168.2.101   
metric 425
192.168.122.0/24 dev virbr0  proto kernel  scope link  src 192.168.122.1


traceroute gmx.de
traceroute to gmx.de (213.165.65.60), 30 hops max, 60 byte packets
  1  Speedport.ip (192.168.2.1)  0.578 ms  0.662 ms  0.859 ms
^C

[root at h1 ~]# traceroute spiegel.de
traceroute to spiegel.de (62.138.116.3), 30 hops max, 60 byte packets
  1  10.8.0.1 (10.8.0.1)  35.009 ms  34.982 ms  34.956 ms

Why the routing is different, in first case over br0 in second over  
the vpn device?


How can i disable "push default route" from the server-directive on  
client-side in OpenVPN?
I want, that only traffic, incoming over tun0 routing back over tun0.  
Is this possible with firewalld-cmd?

Thx.

Grüße

Axel




More information about the CentOS mailing list