Hello,
As a new eBox user - my emphatic compliments to the development team - eBox is an incredible package!
For my problem -- I have set up the following test configuration. Any advice would be most appreciated.
following
http://www.ebox-platform.com/usersguide/en/html-chunk/ch17s02.htmlfour hosts with ethernet cross-over cables between them
client A1 -> 192.168.1.2
'lan A' -> 192.168.1.0/255.255.255.0
ebox 0.11.2 server A
ebox lan A port -> 192.168.1.1
ebox openvpn server - Allow eBox to eBox tunnels is checked
ebox openvpn address pool -> 192.168.2.0/255.255.255.0
ebox openvpn advertised network -> 192.168.1.0/255.255.255.0
ebox wan port -> 192.168.3.2
ebox 0.11.2 server B
ebox wan port -> 192.168.3.3
ebox openvpn client with certificates and keys from ebox A
ebox openvpn client points to 192.168.3.2 for its openvpn server
ebox lan B port -> 192.168.4.1
'lan B' -> 192.168.4.0/255.255.255.0
client B1 -> 192.168.4.2
client A1 can ping ebox server A and the wan port of ebox server B
client B1 can ping ebox server B and the wan port of ebox server A
ebox server A can ping client A1 and the wan port of ebox server B
ebox server B can ping client B1 and the wan port of ebox server A
in the OpenVPN logs of ebox server A - ebox server B appears to connect and authenticate correctly to ebox server A - however...
client A1 cannot ping client B1
client B1 cannot ping client A1
ebox server A cannot ping client B1
ebox server B cannot ping client A1
Do I need to set up any firewall rules to allow traffic from the 192.168.2.* virtual address space to talk to hosts in the 192.168.1.* address space?
Do I need to set up any firewall rules to allow traffic from the 192.168.1.* address space to talk to hosts in the 192.168.4.* address space?
Does anything get logged when host B1 would access resources in lan A?
Does anything get logged when host A1 would access resources in lan B?
From the documentation it would appear host B1 should be able to see any resource in the advertised lan A - however, should host A1 be able to see any resource in lan B?
Thank you very much for any advice you can offer.
Eric