[ previous ] [ next ] [ threads ]
 From:  Kerem Erciyes <k underscore erciyes at zegnaermenegildo dot it>
 To:  Philippe Lang <philippe dot lang at attiksystem dot ch>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] NAT on LAN interface
 Date:  Tue, 30 Aug 2005 19:24:16 +0300
Hello Philippe,

I don't think NAT is the answer for what you are trying to do. If you 
can elaborate some on what you are trying to do there might be some 
answers for that. And what type of VPN are you talking about. IPSEC, 
OpenVPN, PPTP or what?

As for PPTP using CMAK (Connection Manager Administration Kit) I created 
PPTP connection setups for Windows XP clients and can give them special 
default rules etc...

As for others I need to think a little.


Philippe Lang wrote:

>NAT/NAT1:1 on LAN interface are disabled, even on 1.2b9. Don't you think
>it would be a good idea to enable it too? I need to change the IP
>address of some computers on the LAN before entering a VPN, and back to
>their original value when going out of the VPN.
>I'm not sure in which order rules are being applied, and if NAT on WAN
>is being applied on packets that are routed inside a VPN.
>Philippe Lang
>Attik System
>rte de la Fonderie 2
>1700 Fribourg
>Tel:   +41 (26) 422 13 75 
>Fax:   +41 (26) 422 13 76
>GSM:   +41 (79) 351 49 94
>Email: philippe dot lang at attiksystem dot ch
>Skype: philippe.lang
>To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
>For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch