Community discussions

 
vsapountzis
just joined
Topic Author
Posts: 1
Joined: Thu Dec 27, 2018 12:41 am

proxy-arp blocking static subnets on VPN L2TP-IPSec

Thu Dec 27, 2018 1:00 am

Hi,

I followed this tutorial here: https://www.youtube.com/watch?v=vPxGIz0_Pnw to setup a VPN (L2TP-IPsec).

My local network has two subnets:
  • 192.168.0.x/24
  • 172.16.0.x/16
The first subnet is used by the DHCP clients connected to the router while the second is a set of static IPs that are manually assigned as secondary addresses to a few of these clients for a specific reason (medical equipment).
The router gives out addresses only on 192.168.0.x/24 subnet and it doesn't have an address or a DHCP server on the second.

Although this was working fine, I needed to access the local resources remotely so I enabled
arp=proxy-arp
on the router's bridge. After doing that I successfully gained access to internally shared resources but the clients on the second subnet were completely disconnected on the local network.

As soon as I disable
arp=proxy-arp
the second subnet is back online and the clients can ping each other again.

How does the arp setting affects the secondary subnet? Keep in mind that the router is practically agnostic of this subnet and the firewall is not blocking it in any way.

Any help would be appreciated. Thanks.

Who is online

Users browsing this forum: No registered users and 28 guests