OpenVPN site to site VPN Tunnel

Posted on 2008-10-17
Last Modified: 2012-05-05
I am trying to use OpenVPN to create a site to site vpn tunnel.  I can get the client > server config to work but I need to pass traffic to different networks through OpenVPN machines.  Site A is setup as and Site B   I would like to have hosts from each network be able to contact each other.  I am new to OpenVPN and having trouble figuring which options are required in the config to make it work as stated above.  Can anyone point me to some simple configs for a site to site vpn?  The documentation I have read so far is not clear to me as to which options go into the server or client config files and exactly what they do.....

Thanks for the help in advance....
Question by:justinl525
  • 3
  • 2

Expert Comment

ID: 22792280

Author Comment

ID: 22795966
I will give it a look

Accepted Solution

m_adamczyk earned 500 total points
ID: 22808461
What systems are running OpenVPN? Are you using 2 linux routers or 2 servers/PCs? Also, what kind of contact do you want between the two networks?
is a thorough list of HOWTOs straight from OpenVPN.

Read this: 
to determine if you need a bridged or routed connections. Bridging gives you the advantage of passing WINS (MS Shares) information between the two networks.

I have set up both routed and bridged connections with OpenVPN and also found the learning curve high at first - but once set up, they're very stable.

As a rule of thumb, just remember that one of the OpenVPN devices must act as the server (listening for connections) and the other(s) must act as remote clients (initiating connections). Even in bridging mode, one waits and the other(s) initiates.
Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.


Author Comment

ID: 22812764
I am trying to set up a routed VPN.  I am using the Windows PCs to do this.  I want to have host on one side be able to contact hosts on the other side....  As of now I dont need to incorparate anme resolution as this alrady being done and is working.  I am having trouble establishing ip connectivity.  I do understand that on end of the tunnel needs to be server and the client...  The server and client connect ok.... and one side of the tunnel can ping the other side but not vice versa...  I look at the routing tables on the 2 endpoint PCs and the routes top the remote network have gateways that are IPs that are not assigned to any device within the tunnel... I guess I am not seeing how the OpenVpn routing logic works or I am confused about how it works compared to convetional routing...(cleint server stuff)
The documentation is confusing because I see many configurations that are supposed to be site to site but they hard to follow because of the documenatation on the OpenVpn website... its not detailed enough about how things are working and seems to contradictory between sample configs... (i know there are many ways to configure stuff probably)  

The learning curve is high at first becasue of the lack of backgournd on how the App works... if you know how something works you will understand better how to give it what it needs to work....

You cant just throw rods and pistons into a metal block and expect to get much from that, but if you have a clearer understanding of the architecture and design then you will see where to bolt those rods and pisting to a crankshaft and have a nice runnging engine very quickly. (sorry for the rough analogy, its still early for me)

I just want a simple vpn tunnel site to site where the tunnel endpoint route packest from one subnet to the other and vice versa...  :-(

Expert Comment

ID: 22947499
For your testing scenario, you'll want to have firewall temporarily disabled on both machines. For your routing tables... yuck, that's been my most difficult learning curve so far too.

Let me see if I can find some good info for you. Give a few days to find something. What systems are you running OpenVPN on? Windows? Linux?

Author Comment

ID: 22950196

Featured Post

Live: Real-Time Solutions, Start Here

Receive instant 1:1 support from technology experts, using our real-time conversation and whiteboard interface. Your first 5 minutes are always free.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Preface Having the need * to contact many different companies with different infrastructures * do remote maintenance in their network required us to implement a more flexible routing solution. As RAS, PPTP, L2TP and VPN Client connections are no…
For a while, I have wanted to connect my HTC Incredible to my corporate network to take advantage of the phone's powerful capabilities. I searched online and came up with varied answers from "it won't work" to super complicated statements that I did…
After creating this article (, I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (, I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

776 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question