[PLUG] Routing Question
John Medway
pdxlinux at johnmedway.com
Fri Nov 21 21:07:53 UTC 2008
Sure enough, I forgot to add a masqerade statement to the iptables rules
when I added eth2, after the fact. Duh...
At 05:16 PM 11/20/2008, Russell Senior wrote:
> >>>>> "John" == John Medway <pdxlinux at johnmedway.com> writes:
>
>John> We have an OpenVPN server at a colo, with each site connecting
>John> via DSL. One of our site routers (call it "X") is multihomed,
>John> and connects to two different DSL modems. One DSL is supposedly
>John> dedicated to our OpenVPN connection (and any other ancillary
>John> traffic to the same IP range as the OpenVPN server external
>John> address), and one to all other traffic. But there's some routing
>John> weirdness in how I've (apparently incorrectly) implemented it.
>
>John> Routing from X to the colo, whether VPN or no, works.
>John> Routing from X to other outside addresses works. Routing from a
>John> machine behind X to the colo via the VPN works. Routing from a
>John> machine behind X to the colo, NOT on VPN fails. (i.e., to the
>John> other public IP addresses there) Routing from a machine behind X
>John> to anything elsewhere (i.e., on the other path) works
>
>[...]
>
>John> Ideas?
>
>Three letters: N. A. T.
>
>I didn't see enough information to know for sure, but NAT combined
>with multihoming can make things like TCP connections get very
>confused.
>
>
>--
>Russell Senior, Secretary
>russell at personaltelco.net
>_______________________________________________
>PLUG mailing list
>PLUG at lists.pdxlinux.org
>http://lists.pdxlinux.org/mailman/listinfo/plug
More information about the PLUG
mailing list