Hello,
I have a problem . I would like to see the network behind the routerOS from the openvpn linux server.
My conf :
RouterOS ip :
Local : 192.168.3.252
Vpn : 10.12.0.22
Linux Openvpn Server ip :
Vpn : 10.12.0.1
Ping linux server → routeros ip vpn : (OK)
PING 10.12.0.22 (10.12.0.22) 56(84) bytes of data.
64 bytes from 10.12.0.22: icmp_req=1 ttl=64 time=12.7 ms
64 bytes from 10.12.0.22: icmp_req=2 ttl=64 time=28.1 ms
64 bytes from 10.12.0.22: icmp_req=3 ttl=64 time=44.7 ms
64 bytes from 10.12.0.22: icmp_req=4 ttl=64 time=11.9 ms
64 bytes from 10.12.0.22: icmp_req=5 ttl=64 time=14.1 ms
^C
— 10.12.0.22 ping statistics —
5 packets transmitted, 5 received, 0% packet loss, time 4004ms
rtt min/avg/max/mdev = 11.989/22.339/44.772/12.686 ms
Ping routerOS ip vpn → linux server ip vpn : (OK)
[admin@Mappy] > ping 10.12.0.1
HOST SIZE TTL TIME STATUS
10.12.0.1 56 64 12ms
10.12.0.1 56 64 26ms
10.12.0.1 56 64 39ms
sent=3 received=3 packet-loss=0% min-rtt=12ms avg-rtt=25ms max-rtt=39ms
Ping linux server → routeros ip local : (NOK)
PING 192.168.3.252 (192.168.3.252) 56(84) bytes of data.
— 192.168.3.252 ping statistics —
3 packets transmitted, 0 received, 100% packet loss, time 2016ms
My conf :
Linux server :
echo 1 > /proc/sys/net/ipv4/ip_forward
iptables -t nat -A POSTROUTING -s 10.12.0.0/24 -o eth0 -j MASQUERAD
route add -net 192.168.3.0 netmask 255.255.255.0 gw 10.12.0.2
RouterOS :
Interface VPN = MAPS
/ip firewall nat add chain=srcnat action=masquerade out-interface=MAPS
/ip firewall mangle add chain=prerouting action=mark-routing new-routing-mark=to_bonux passthrough=yes src-address=0.0.0.0/0 dst-address-list=via_bonux
/ip firewall mangle add chain=prerouting action=accept dst-address=10.12.0.0/24 in-interface=Local
I don’t ping a lan 192.168.3.0/24 on linux server …
Please .