I'm having trouble with a specific OpenVPN issue. I'm not even sure if this is even possible or adviced.
I'm running OpenVPN on a FreeBSD-server, dedicated to act as an OpenVPN-server. Both the network adapter and the OpenVPN TAP-interface are grouped in a network bridge. The network bridge has a LAN-IP. So far, this setup seems to work fine. I can ping the server, SSH to the server, anything I would want or need.
I can even connect with and OpenVPN-client. And when connected, I get an IP that matches the LAN IP-range. No tunnel, no routing, hence the bridged solution. And it works too, I can access anything in the network. So far so good.
However, the thing I'm stuck with, I need to access the connected client from the LAN too. And I can't get this to work. If anyone could steer me in the right direction, it would be most appreciated.
I'm running OpenVPN on a FreeBSD-server, dedicated to act as an OpenVPN-server. Both the network adapter and the OpenVPN TAP-interface are grouped in a network bridge. The network bridge has a LAN-IP. So far, this setup seems to work fine. I can ping the server, SSH to the server, anything I would want or need.
Code:
bridge0: flags=1008843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST,LOWER_UP> metric 0 mtu 1500
options=0
ether 58:9c:fc:10:cb:45
inet 192.168.13.5 netmask 0xffffff00 broadcast 192.168.13.255
id 00:00:00:00:00:00 priority 32768 hellotime 2 fwddelay 15
maxage 20 holdcnt 6 proto rstp maxaddr 2000 timeout 1200
root id 00:00:00:00:00:00 priority 32768 ifcost 0 port 0
member: tap0 flags=143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
ifmaxaddr 0 port 3 priority 128 path cost 2000000
member: hn0 flags=143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
ifmaxaddr 0 port 2 priority 128 path cost 2000
groups: bridge
nd6 options=9<PERFORMNUD,IFDISABLED>
I can even connect with and OpenVPN-client. And when connected, I get an IP that matches the LAN IP-range. No tunnel, no routing, hence the bridged solution. And it works too, I can access anything in the network. So far so good.
However, the thing I'm stuck with, I need to access the connected client from the LAN too. And I can't get this to work. If anyone could steer me in the right direction, it would be most appreciated.