Dear Klaszman,
I used your ref:
> http://openvpn.net/bridge.html
to set the bridge up.

Guess it is working.
At least for 192.168.100.x

No idea what with the other subnets.
There is no hint how to handle the situation when
bridging into severa subnets.

Has anyone an idea how to check this when I am inside the
net and configuring it?

I think about a proxy or so.
It is somewhat cumbersome when it is going to check the openvpn
from the inside

Best Juergen.

"Llanzlan Klazmon" <Klazmon@llurdiaxorb.govt> schrieb im Newsbeitrag
news:Xns97E4A7F591824Klazmonllurdiaxorbgo@203.97.3 7.6...
> "Juergen Loewner" <JLoewner@JLoewnerEDV.com> wrote in news:e6sb4j$js9$1
> @news.citykom.de:
>
>> Hi folks,
>> I need help:
>> ===============================
>> Environment:
>> A Linux (Debian) PC with iptables firewall.
>> On this firewall pc is openvpn installed in
>> bridge mode.
>> The connection seems OK.
>> The client pc (XP) says "connected"!
>>
>> All internal/external(Internet) connections work
>> without obvious problems (No OpenVPN at this time).
>> So I assume the routes on the firewall PC OK.
>>
>> Firewall PC = openvpn PC
>>
>> Firewall PC has following interfaces/subnets:
>> eth1) Internet: 83.82.81.1 (public / out: masquerading)
>> eth2) Internal LAN (192.168.100.x): 192.168.100.254
>> eth3) DMZ (83.82.81.x): 83.82.81.254
>> eth4) WLAN (192.168.101.x) 192.168.101.254
>>
>> OpenVPN is setup as a bridge on eth2.
>>
>> Question: has the bridge to be bound to eth3 and eth4
>> explicitly?
>> If so: HOW? (I have no clue how the syntax looks for another
>> bridge)
>> Connection from the client will be to eth1. The internet i/f.
>
> See this:
>
> http://openvpn.net/bridge.html
>
>>
>> Any objections on the setup idea?
>>
>> Any suggestions?
>>
>> Best
>> Juergen
>> ===============================
>> Setup in bridge-start:
>> br="br0"
>> tap="tap0"
>> eth="eth2"
>> eth_ip="192.168.100.254"
>> eth_netmask="255.255.255.0"
>> eth_broadcast="192.168.100.255"
>> ...
>>
>>
>>
>>
>