Есть машина торчащая в локалку. В интернет выходит через ВПН от провайдера. На ней стоит ВПН сервер и другая машина из локальной сети подключается к ней по ВПН.
ИП впн сервера 192.168.160.1
ИП впн клиента 192.168.160.2
Необходимо реализовать доступ во внешку через машину с ВПН сервером. Активность на ВПН сервере со стороны клиента видна, но пинги не проходят и доступа во внешку нет. Где косяк?
Сначала конфиги с сервера, потом с клиента.
--------------------------------------------------
localhost ppp # route -n
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
192.168.160.2 0.0.0.0 255.255.255.255 UH 0 0 0 ppp1
172.31.3.1 172.20.131.65 255.255.255.255 UGH 0 0 0 eth0
81.20.192.15 0.0.0.0 255.255.255.255 UH 0 0 0 ppp0
172.20.131.64 0.0.0.0 255.255.255.224 U 0 0 0 eth0
81.20.192.0 172.20.131.65 255.255.240.0 UG 0 0 0 eth0
195.34.224.0 172.20.131.65 255.255.224.0 UG 0 0 0 eth0
93.180.0.0 172.20.131.65 255.255.192.0 UG 0 0 0 eth0
95.179.0.0 172.20.131.65 255.255.128.0 UG 0 0 0 eth0
192.168.0.0 0.0.0.0 255.255.0.0 U 0 0 0 eth0
172.24.0.0 172.20.131.65 255.252.0.0 UG 0 0 0 eth0
172.20.0.0 172.20.131.65 255.252.0.0 UG 0 0 0 eth0
172.16.0.0 172.20.131.65 255.240.0.0 UG 0 0 0 eth0
127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo
0.0.0.0 81.20.192.15 0.0.0.0 UG 0 0 0 ppp0
--------------------------------------------------
localhost ppp # cat /etc/pptpd.conf |grep -v "^#" |grep -v "^$"
option /etc/ppp/options_vpn.pptpd
localip 192.168.160.1
remoteip 192.168.160.2-254
bcrelay eth0
listen 0.0.0.0
debug
logwtmp
--------------------------------------------------
localhost ppp # cat /etc/ppp/options_vpn.pptpd |grep -v "^#" |grep -v "^$"
lock
name pptpd
refuse-pap
refuse-chap
refuse-mschap
require-mschap-v2
ms-dns 195.34.224.1
ms-dns 195.34.224.2
nodefaultroute
nobsdcomp
--------------------------------------------------
(client@pts/2)~/.pal $> route -n [sh]
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
0.0.0.0 192.168.160.1 255.255.255.255 UGH 0 0 0 ppp0
192.168.160.1 192.168.1.1 255.255.255.255 UGH 0 0 0 eth0
192.168.160.1 0.0.0.0 255.255.255.255 UH 0 0 0 ppp0
192.168.1.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
81.20.192.0 192.168.1.1 255.255.240.0 UG 0 0 0 eth0
195.34.224.0 192.168.1.1 255.255.224.0 UG 0 0 0 eth0
93.180.0.0 192.168.1.1 255.255.192.0 UG 0 0 0 eth0
95.179.0.0 192.168.1.1 255.255.128.0 UG 0 0 0 eth0
172.16.0.0 192.168.1.1 255.240.0.0 UG 0 0 0 eth0
127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo
0.0.0.0 192.168.160.1 0.0.0.0 UG 0 0 0 ppp0
--------------------------------------------------
(client@pts/2)~/.pal $> sudo cat /etc/ppp/options.pptp.mtserv |grep -v "^#" |grep -v "^$" [sh]
user xxx # <-- поменять тут
lock
noauth
nobsdcomp
remotename mtservak
defaultroute
persist
ipparam pptpd # может пригодиться для использования скриптами ip-up и ip-down
--------------------------------------------------
(client@pts/4)~ $> ping -w 3 192.168.160.1 [sh]
PING 192.168.160.1 (192.168.160.1) 56(84) bytes of data.
--- 192.168.160.1 ping statistics ---
3 packets transmitted, 0 received, 100% packet loss, time 2010ms
(client@pts/4)~ $>
--------------------------------------------------
(client@pts/4)~ $> ping -w3 172.20.131.77 [sh]
PING 172.20.131.77 (172.20.131.77) 56(84) bytes of data.
64 bytes from 172.20.131.77: icmp_seq=1 ttl=58 time=24.8 ms
64 bytes from 172.20.131.77: icmp_seq=2 ttl=58 time=25.1 ms
64 bytes from 172.20.131.77: icmp_seq=3 ttl=58 time=22.9 ms
--- 172.20.131.77 ping statistics ---
3 packets transmitted, 3 received, 0% packet loss, time 2009ms
rtt min/avg/max/mdev = 22.926/24.291/25.123/0.981
--------------------------------------------------
localhost ~ # ping -w 3 192.168.160.1
PING 192.168.160.1 (192.168.160.1) 56(84) bytes of data.
64 bytes from 192.168.160.1: icmp_seq=1 ttl=64 time=0.251 ms
64 bytes from 192.168.160.1: icmp_seq=2 ttl=64 time=0.201 ms
64 bytes from 192.168.160.1: icmp_seq=3 ttl=64 time=0.202 ms
--- 192.168.160.1 ping statistics ---
3 packets transmitted, 3 received, 0% packet loss, time 2003ms
rtt min/avg/max/mdev = 0.201/0.218/0.251/0.023 ms
localhost ~ # ping -w 3 192.168.160.2
PING 192.168.160.2 (192.168.160.2) 56(84) bytes of data.
--- 192.168.160.2 ping statistics ---
4 packets transmitted, 0 received, 100% packet loss, time 2999ms
--------------------------------------------------
--------------------------------------------------