Help! Can't ping Linux server across VPN

I've set up a VPN and can access shared files on windoze machines
across the VPN. I can NOT access shares on a Linux box. I can't even
ping the linux box across the VPN. Iptables is turned off. I think I
must be overlooking something obvious. Any help would be appreciated.

My network configuration is as follows:

Qwest DSL comes into an Actiontec GT701-WG DSL modem. The DSL account
is set up with a block of 8 IP addresses (6x.3x.4x.224 through
6x.3x.4x.231 - 5 are user assignable). The modem is assiged the
"Reserved Gateway" WAN IP address of 6x.3x.4x.230, with a LAN IP of
192.168.0.1. From the DSL modem I go into a Linksys BEFVP41 VPN router
(WAN IP = 6x.3x.4x.229, LAN IP=192.168.0.66). I go from the router to a
hub. The Windoze machines (Dell Dimensions with XP Pro, IPs =
192.168.0.2xx) and the linux box (Tyan 2460 mobo, SMC1211TX LAN card,
Fedora core 4, running samba, IP = 192.168.0.11) are all plugged into
this same hub.

The other end of the VPN tunnel is a laptop across the street running
TheGreenBow VPN client. With everything up and running, the laptop can
connect to shared folders on the Windoze machines. The laptop (IP =
192.168.99.111) can ping the windoze machines (IP = 192.168.0.2xx)
across the VPN and the windoze machines can ping the laptop. The laptop
can not ping the linux box (IP = 192.168.0.11) and the linux box can
not ping the laptop. The windoze machines and the linux box can all
ping each other. The linux box can ping the BEFVP41 VPN router (IP =
192.168.0.66).

Am I missing some sort of fundamental thing I need to do with Linux in
order to use a VPN?

Thanks,

Jim



just4phun

just4phun wrote:
> I've set up a VPN and can access shared files on windoze machines
> across the VPN. I can NOT access shares on a Linux box. I can't even
> ping the linux box across the VPN. Iptables is turned off. I think I
> must be overlooking something obvious. Any help would be appreciated.
>
> My network configuration is as follows:
>
> Qwest DSL comes into an Actiontec GT701-WG DSL modem. The DSL account
> is set up with a block of 8 IP addresses (6x.3x.4x.224 through
> 6x.3x.4x.231 - 5 are user assignable). The modem is assiged the
> "Reserved Gateway" WAN IP address of 6x.3x.4x.230, with a LAN IP of
> 192.168.0.1. From the DSL modem I go into a Linksys BEFVP41 VPN router
> (WAN IP = 6x.3x.4x.229, LAN IP=192.168.0.66). I go from the router to a
> hub. The Windoze machines (Dell Dimensions with XP Pro, IPs =
> 192.168.0.2xx) and the linux box (Tyan 2460 mobo, SMC1211TX LAN card,
> Fedora core 4, running samba, IP = 192.168.0.11) are all plugged into
> this same hub.
>
> The other end of the VPN tunnel is a laptop across the street running
> TheGreenBow VPN client. With everything up and running, the laptop can
> connect to shared folders on the Windoze machines. The laptop (IP =
> 192.168.99.111) can ping the windoze machines (IP = 192.168.0.2xx)
> across the VPN and the windoze machines can ping the laptop. The laptop
> can not ping the linux box (IP = 192.168.0.11) and the linux box can
> not ping the laptop. The windoze machines and the linux box can all
> ping each other. The linux box can ping the BEFVP41 VPN router (IP =
> 192.168.0.66).
>
> Am I missing some sort of fundamental thing I need to do with Linux in
> order to use a VPN?

Yes, most probably routing. Does the the linux box have a route for
the 192.168.99.0/24 net (or a default route) that points to
192.168.0.1?

-Chris

Thanks Chris. Ultimately, the laptop (and other laptops) will be
connecting from many different locations, so in the long run, it
wouldn't help to have a route to the 192.168.00.0/24 net. You're right
though, that I didn't set a default route that points to
192.168.0.1. Am I correct that I would set that as:

route add -net default gw 192.168.0.1 dev eth0

Also, do I need to do anything with the /etc/ipsec.conf file? I
assummed I didn't because the linux box is not actually acting as a VPN
client.

Thanks again,

Jim

Christian Winter wrote:
> just4phun wrote:
> >
> > Am I missing some sort of fundamental thing I need to do with Linux in
> > order to use a VPN?
>
> Yes, most probably routing. Does the the linux box have a route for
> the 192.168.99.0/24 net (or a default route) that points to
> 192.168.0.1?
>
> -Chris

Correction:

> wouldn't help to have a route to the 192.168.00.0/24 net. You're right

I meant to type 192.168.99.0/24 above.

Also, should I be setting the default route to be the DSL modem, or the
VPN router?