Hi,
could you check if the routing is ok on both servers when the tunnel is up:
netstat -r
and post that back?
Can you post the outcome of
tcpdump -nlpi insideinterface
of server A when you ping from the network behind server B?
Server A (Server) Routing table
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
10.4.0.2 0.0.0.0 255.255.255.255 UH 0 0 0 tun0
192.168.4.0 10.4.0.2 255.255.255.0 UG 0 0 0 tun0
192.168.3.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
10.4.0.0 192.168.3.1 255.255.255.0 UG 0 0 0 eth0
219.142.216.0 0.0.0.0 255.255.248.0 U 0 0 0 eth1
0.0.0.0 219.142.216.1 0.0.0.0 UG 0 0 0 eth1
Server B (Client) Routing table
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
10.4.0.1 0.0.0.0 255.255.255.255 UH 0 0 0 tun0
192.168.4.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
192.168.3.0 10.4.0.1 255.255.255.0 UG 0 0 0 tun0
10.4.0.0 192.168.4.1 255.255.255.0 UG 0 0 0 eth0
219.142.216.0 0.0.0.0 255.255.248.0 U 0 0 0 eth1
0.0.0.0 219.142.216.1 0.0.0.0 UG 0 0 0 eth1
If I run tcpdump on the server's internal interface ( I am assuming
the tunneling interface tun0 as there is no traffic visible on eth0
from the client network) I can see the attempts at pinging or trying to view SMB shares:
20:22:05.893588 IP 192.168.4.204.38714 > 192.168.3.2.microsoft-ds: S 1780914548:1780914548(0) win 5840 <mss 1366,sackOK,timestamp 29016041 0,nop,wscale 2>
20:22:16.459340 IP 192.168.4.204 > 192.168.3.2: icmp 64: echo request seq 1
20:22:17.459759 IP 192.168.4.204 > 192.168.3.2: icmp 64: echo request seq 2
etc...
ok so where do I go from here?