|
OpenVPN client TUN as default and only gateway 8 Months, 3 Weeks ago
|
|
|
Hi,
new to clearOs 5 but already love it ! Really great piece of software. Congrats.
I would like to set up clearos as router for my home lan, using tunnelvpn.se as only gateway (OpenVPN CLIENT MODE).
I set up clear os with ETH0 on my ADSL modem, and clear os get the internet IP 88.160.x.x.
ETH1 is my LAN on 192.168.0.x.
All PC of my lan then have internet access, np.
SSH, configuring OpenVPN client (easy .conf and .crt are provided by tunnelvpn.se).
It connect and I get IP 172.95.x.x
PCs do not have anymore access to internet then.
So now, can anyone point me in the right direction to enable routing to go outside through 172.95.x.x and NOT though 88.160.x.x ?
I mean, if the VPN fail, no internet connexion.
Thanks in advance,
Klona
|
|
Klona
Fresh Boarder
Posts: 4
|
|
|
|
|
Re:OpenVPN client TUN as default and only gateway 8 Months, 1 Week ago
|
|
|
Did you get anywhere with this? I'd love to know how to do something like this myself.
I'd like to have traffic on certain ports and to certain addresses go down the VPN link so I don't have to dial the VPN on any of my clients, it'll always be up.
As with yourself if I connect my OpenVPN I'll lose net connectivity. If I disable it from pushing through the routes then it connects but I cannot do anything with it.
Not sure what route and such commands I need to work to get it working. I've got MultiWAN as well which doesn't help.If you search for pfSense OpenVPN VyprVPN you'll see some instructions for that OS, I'm sure it must be possible on ClearOS.
Cheers,
James
|
|
|
|
|
|
|
Re:OpenVPN client TUN as default and only gateway 8 Months, 1 Week ago
|
|
|
Hi,
In fact i moved away from ClearOs. No answer here..
And moved to IPfire, with a design not so perfect, but nice features like URL filtering , and a more active communauty.
Anyway, it should work also as it is at linux level.
in shell :
modprobe tun
openvpn --config /var/ipfire/ovpn/openvpn.conf .daemon
iptables -A POSTROUTING -t nat -o tun0 -j MASQUERADE
Now, in progress with some guys to put the Tun interface as the RED interface, and then being able to do all operation (firewall, port forwating, QoS..) and with the original internet link as Orange, in DMZ, with no access at all from LAN.
Not finished at all but have not a lot of time right now.
Hope this already helps a bit.
/klona
|
|
Klona
Fresh Boarder
Posts: 4
|
|
|
|
|
