I'm trying to emulate some functionality from a previous linux-based OpenVPN solution onto a new FreeBSD-based OpenVPN solution with different IP ranges.
Old VPN network: 10.0.0.0/8 (there are lots of smaller customer ranges within for isolation)
New VPN network: 172.29.0.0/16 (ditto)
Clients (upwards of ~4k customer appliances) periodically connect to an FTP server also running on the old VPN server at 10.8.0.1.
Once I migrate the clients from old to new, I'd like (ok, "need") them to still hit "ftp://10.8.0.1/" (the URL, not the old server) from the new VPN's range. Since they are appliances and not our property, and I can't really change or update them, I'm stuck w/ the hardcoded URL.
I have a new dedicated ftpd host (VNET jail) connected to the new VPN that has an additional loopback created with a 10.8.0.1 IP.
I've turned on forwarding (gateway_enable) and added a static route to another test client host (route add -net 10.8.0.0/24 <VPN IP of dedicated client running ftpd>).
I can ftp to the dedicated host's VPN IP but not 10.8.0.1.
I'm guessing that using a loopback might be the issue?
edit: I tried w/ a tap interface as well, same result.
edit2: I also tried with 10.8.0.1/24 as an alias IP on tun0; no go.
Old VPN network: 10.0.0.0/8 (there are lots of smaller customer ranges within for isolation)
New VPN network: 172.29.0.0/16 (ditto)
Clients (upwards of ~4k customer appliances) periodically connect to an FTP server also running on the old VPN server at 10.8.0.1.
Once I migrate the clients from old to new, I'd like (ok, "need") them to still hit "ftp://10.8.0.1/" (the URL, not the old server) from the new VPN's range. Since they are appliances and not our property, and I can't really change or update them, I'm stuck w/ the hardcoded URL.
I have a new dedicated ftpd host (VNET jail) connected to the new VPN that has an additional loopback created with a 10.8.0.1 IP.
I've turned on forwarding (gateway_enable) and added a static route to another test client host (route add -net 10.8.0.0/24 <VPN IP of dedicated client running ftpd>).
I can ftp to the dedicated host's VPN IP but not 10.8.0.1.
I'm guessing that using a loopback might be the issue?
edit: I tried w/ a tap interface as well, same result.
edit2: I also tried with 10.8.0.1/24 as an alias IP on tun0; no go.