Openvpn tap traffic routing from qmimux0

For my current setup using a rutx12 I am experimenting with kmod-bonding which I got working through the teltonika sdk. I have a debian server as my head end where I have configured the openvpn servers, each with its own tap (I can provide the configs).

I have bonded the taps under bond0, activated ip4 forwarding, added masquerading and routing via:

iptables -A FORWARD -i bond0 -j ACCEPT
iptables -A FORWARD -o bond0 -j ACCEPT
iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE

both taps are up.

Router side, I have created the taps, bonded them under bond0 and added routing rules via (for qmimux0 and qmimux1):

ip rule add pref 10 from qmimux0_Ipaddress table vpn1
ip route add default via qmimux0_gateway dev qmimux0 table vpn1

the taps on the router are connected to the taps on the server, I can verify via openvpn logs.

Now my only thing is, once I start the bond via:

ip link set bond0 up mtu 1440

ip route add default via remoteBondIP metric 1

I get no internet , I cant even connect to the server via ssh even though the taps are up.

Here is the output of ip addr on the router for tap1, tap2, bond0:

212: bond0: <BROADCAST,MULTICAST,MASTER,UP,LOWER_UP> mtu 1440 qdisc noqueue state UP group default qlen 1000
link/ether fa:3e:0a:31:76:1e brd ff:ff:ff:ff:ff:ff
inet 10.8.0.253/24 scope global bond0
valid_lft forever preferred_lft forever
inet6 fe80::f83e:aff:fe31:761e/64 scope link
valid_lft forever preferred_lft forever
213: tap1: <BROADCAST,MULTICAST,SLAVE,UP,LOWER_UP> mtu 1440 qdisc fq_codel master bond0 state UP group default ql
en 1000
link/ether fa:3e:0a:31:76:1e brd ff:ff:ff:ff:ff:ff
214: tap2: <BROADCAST,MULTICAST,SLAVE,UP,LOWER_UP> mtu 1440 qdisc fq_codel master bond0 state UP group default ql
en 1000
link/ether fa:3e:0a:31:76:1e brd ff:ff:ff:ff:ff:ff

ifconfig (as soon as bond is started):

tap1 Link encap:Ethernet HWaddr FA:3E:0A:31:76:1E
UP BROADCAST RUNNING SLAVE MULTICAST MTU:1440 Metric:1
RX packets:3 errors:0 dropped:0 overruns:0 frame:0
TX packets:14 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:372 (372.0 B) TX bytes:1368 (1.3 KiB)

tap2 Link encap:Ethernet HWaddr FA:3E:0A:31:76:1E
UP BROADCAST SLAVE MULTICAST MTU:1440 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:4 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:0 (0.0 B) TX bytes:496 (496.0 B)

bond0 Link encap:Ethernet HWaddr FA:3E:0A:31:76:1E
inet addr:10.8.0.253 Bcast:0.0.0.0 Mask:255.255.255.0
inet6 addr: fe80::f83e:aff:fe31:761e/64 Scope:Link
UP BROADCAST RUNNING MASTER MULTICAST MTU:1440 Metric:1
RX packets:3 errors:0 dropped:0 overruns:0 frame:0
TX packets:18 errors:0 dropped:61 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:372 (372.0 B) TX bytes:1864 (1.8 KiB)

both my simcard interfaces on the webUI are up and connected

I know there could be a couple things that could be causing the lack of internet, but what could I look at to possibly fix/diagnose the problem? I can provide any configs, logs and outputs if needed.

the setup is similar (with small adjustments including certificates for the vpn and syntax adjustments) to this:

GitHub - onemarcfifty/openvpn-bonding: bond multiple tap interfaces over openvpn

This topic was automatically closed after 15 days. New replies are no longer allowed.