Hello, I am using the following setup (The WLAN AP is integrated in the Gateway): WinPC -----------> OpenVPN -----> foreign Network ---> Gateway ---------> WLAN AP ------> Target Device @ WLAN 192.168.1.107 -> 10.81.234.4 --> 192.168.23.4 --> 192.168.23.150 -> 192.168.11.1 -----> 192.168.11.100 This is a route setup by OpenVPN itself. Access to the 192.168.23.x devices works fine. route ADD 192.168.23.0 MASK 255.255.255.0 10.81.234.1 To get a route to the 192.168.11.100 Device, I tried all of these: route add 192.168.11.0 mask 255.255.255.0 10.81.234.4 route add 192.168.11.0 mask 255.255.255.0 10.81.234.1 route add 192.168.11.0 mask 255.255.255.0 192.168.23.150 ... none of them worked. In any case, a tracert to 192.168.11.100 indicating always the use of the standard gateway and not the VPN Device.
That makes me think routing is not set up properly to use the created tunnel. With gateway and maybe a firewall between source and target VPN setup is somewhat complicated. Have you already read the instructions on how to do the setup? Use this testing flowchart to pinpoint where trouble lies: http://pekster.sdf.org/misc/redirect.png
The flowchart is somewhat vague to me. As already metioned, the VPN works in general, only the "last mile" does not work as expected. "last mile" means for me, that I can reach the gateway 192.168.23.150, which has the WLAN AP integrated, but not the clients attached to the WLAN. Might be, that my knwoledge lacks something...
I can counter that with saying your description of the setup is somewhat vague. If you followed the flowchart we would be on the same page on what is working and what is not working on your setup. I'm just guessing now, but does the firewall setup in WLAN AP allow connections from the outside (the Gateway ) to the target network?
Ok, just for clarification. There´s two raspberries on the remote side, both accessible from the Windows Network via VPN. One of them has IP 192.168.23.23 and a route set to 192.168.11.1 via 192.168.23.150. In any case, I can access the WLAN attached devices via this raspi. From my POV, one major Q is, why the hell, traffic is not routed through the VPN tunnel, if one of the routes abive mentionec, is set. Even, if these routes is very similar to the ones set by OpenVPN itself.
