Local bridge error
Posted: Wed Jan 13, 2016 2:02 pm
Hi!
I try to build VPN Server on SmartOS hypervisor (Solaris-based), but faced with a problem with a local bridge.
First of all, here is my setup (it's a bit complicated, I know):
- Hyper-V hypervisor with static public IP. It is a part of local network with 192.168.1.xxx addresses. It has a VM with two virtual network adapters, both with "mac spoofing: on".
- Inside the VM I have SmartOS Global Zone. First VM virtual adapter, dnet0, has IP from 192.168.1.xxx range and access to Internet. Only one port is forwarded to this IP (ssh access to Global Zone). Second vnic, dnet1, has no functionality in Global Zone.
- Inside I have NAT-Zone, it has access to both dnet0 and dnet1 (inside zone they are net0 and net1). dnet0 (net0) has IP from 192.168.1.xxx range and access to Internet. This IP has any-to-any port forwarding, so all connections from outside are forwarded to this Zone. Second vnic, dnet1 (net1), has self-assigned IP 10.0.2.1, gateway 10.0.2.1, and IPnat settings (this Zone acts as NAT server). IPNat includes redirection of 443, 500, 4500, 1701 to VPN-Zone.
- DHCP-Zone, with one vnic, net0 (dnet1), with IP 10.0.2.4 and acts as DHCP server. All other zones have "ip: dhcp" in their configs.
- VPN-Zone, with net0 (dnet1), with dhcp-get IP 10.0.2.12 with installed SoftEther VPN Server. It has virtual hub and all configs needed (I can connect to it from my Mac or iPhone using IPSec L2TP), but I see only 1 zone - VPN Zone. And only 1 Mac, that one I connected from. But I need to get access to all 10.0.2.x subnet and all subnet behind Mac. As I understood, I need to turn on local bridge between Virtual Hub and net0 vnic (10.0.2.12), but in SoftEther Server Manager there is an Error in local bridge settings. Also I was not able to connect to VPN Server until I turned on SecureNAT.
What should I fix to be able to link LANs on both sides? I am able to add/remove virtual nics both on Hyper-V and SmartOS.
Thanks a lot for all possible ideas.
I try to build VPN Server on SmartOS hypervisor (Solaris-based), but faced with a problem with a local bridge.
First of all, here is my setup (it's a bit complicated, I know):
- Hyper-V hypervisor with static public IP. It is a part of local network with 192.168.1.xxx addresses. It has a VM with two virtual network adapters, both with "mac spoofing: on".
- Inside the VM I have SmartOS Global Zone. First VM virtual adapter, dnet0, has IP from 192.168.1.xxx range and access to Internet. Only one port is forwarded to this IP (ssh access to Global Zone). Second vnic, dnet1, has no functionality in Global Zone.
- Inside I have NAT-Zone, it has access to both dnet0 and dnet1 (inside zone they are net0 and net1). dnet0 (net0) has IP from 192.168.1.xxx range and access to Internet. This IP has any-to-any port forwarding, so all connections from outside are forwarded to this Zone. Second vnic, dnet1 (net1), has self-assigned IP 10.0.2.1, gateway 10.0.2.1, and IPnat settings (this Zone acts as NAT server). IPNat includes redirection of 443, 500, 4500, 1701 to VPN-Zone.
- DHCP-Zone, with one vnic, net0 (dnet1), with IP 10.0.2.4 and acts as DHCP server. All other zones have "ip: dhcp" in their configs.
- VPN-Zone, with net0 (dnet1), with dhcp-get IP 10.0.2.12 with installed SoftEther VPN Server. It has virtual hub and all configs needed (I can connect to it from my Mac or iPhone using IPSec L2TP), but I see only 1 zone - VPN Zone. And only 1 Mac, that one I connected from. But I need to get access to all 10.0.2.x subnet and all subnet behind Mac. As I understood, I need to turn on local bridge between Virtual Hub and net0 vnic (10.0.2.12), but in SoftEther Server Manager there is an Error in local bridge settings. Also I was not able to connect to VPN Server until I turned on SecureNAT.
What should I fix to be able to link LANs on both sides? I am able to add/remove virtual nics both on Hyper-V and SmartOS.
Thanks a lot for all possible ideas.