From owner-freebsd-net@FreeBSD.ORG  Tue Jan 24 13:44:31 2006
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
X-Original-To: freebsd-net@FreeBSD.org
Delivered-To: freebsd-net@FreeBSD.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 90F1B16A41F
	for <freebsd-net@FreeBSD.org>; Tue, 24 Jan 2006 13:44:31 +0000 (GMT)
	(envelope-from tiagocruz@b4br.net)
Received: from vader.b4br.net (vader.b4br.net [200.152.202.11])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 0150943D46
	for <freebsd-net@FreeBSD.org>; Tue, 24 Jan 2006 13:44:30 +0000 (GMT)
	(envelope-from tiagocruz@b4br.net)
Received: from localhost (localhost.b4br.net [127.0.0.1])
	by vader.b4br.net (Postfix) with ESMTP id 2DF63181428;
	Tue, 24 Jan 2006 11:39:15 -0200 (BRST)
Received: from vader.b4br.net ([127.0.0.1])
	by localhost (vader.b4br.net [127.0.0.1]) (amavisd-new, port 10024)
	with ESMTP id 32651-03; Tue, 24 Jan 2006 11:39:08 -0200 (BRST)
Received: from tuxkiller.matter.b4br.net (yoda.b4br.net [200.152.202.10])
	by vader.b4br.net (Postfix) with ESMTP id 73D97181420;
	Tue, 24 Jan 2006 11:39:08 -0200 (BRST)
From: Tiago Cruz <tiagocruz@b4br.net>
To: "freebsd-net@FreeBSD.org" <freebsd-net@FreeBSD.org>
In-Reply-To: <20060123204939.A46D4DCAA42@mail.npubs.com>
References: <1138044412.4224.21.camel@localhost.localdomain>
	<20060123204939.A46D4DCAA42@mail.npubs.com>
Content-Type: text/plain
Date: Tue, 24 Jan 2006 11:44:21 -0200
Message-Id: <1138110261.6174.27.camel@localhost.localdomain>
Mime-Version: 1.0
X-Mailer: Evolution 2.0.4 
Content-Transfer-Encoding: 7bit
X-Virus-Scanned: amavisd-new at b4br.net
Cc: nielsen@memberwebs.com
Subject: Re: VPN when host is not gateway
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 24 Jan 2006 13:44:31 -0000

On Mon, 2006-01-23 at 20:49 +0000, Nate Nielsen wrote:

> I'd use tcpdump on the various interfaces (tap devices, ethernet) on the
> machines in question to see exactly at which host is not forwarding the
> packets properly and where they're going.

Thank you Nielsen!
I'm not expert in art of tcpdump, bu I see that:

- OpenVPN in my gateway (192.168.0.1):
1-) client vpn -> [ping] -> 192.168.0.19 [ok]
2-) 192.168.0.19 -> [reply] -> cliente vpn [ok]

- OpenVPN in my backup gateway (192.168.0.253)
1-) client vpn -> [ping] ->  192.168.0.19 [fail]
2-) no reply from 192.168.0.19

I think that this setup will works:
1-) client vpn -> [ping] -> 192.168.0.1 -> [ping] -> 192.168.0.19 
2-) 192.168.0.19 -> [reply] -> 192.168.0.1 -> [reply] -> client vpn

So, my questions is this: How I make this route?
Many thanks!
-- 

Tiago Cruz
http://linuxrapido.org
Linux User #282636

"The box said: Requires MS Windows or better, so I installed Linux"