[ previous ] [ next ] [ threads ]
 
 From:  "a.gatta" <a dot gatta at tiscali dot it>
 To:  Peter Allgeyer <allgeyer at web dot de>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] Openvpn, problem with Inbound Nat on Opt interface
 Date:  Fri, 24 Mar 2006 16:40:51 +0100
Peter Allgeyer wrote:

>Am Freitag, den 24.03.2006, 09:07 +0100 schrieb a.gatta:
>  
>
>>the only reason for me to choose tcp is that the openvpn server is not 
>>under my administration, that is, th server listen on tcp port.
>>    
>>
>http://sites.inka.de/sites/bigred/devel/tcp-tcp.html
>
>  
>
>>Nat (outbound,hiding behind opt 1 address my Lan segment ) is the only 
>>way I can reach networks behind the openvpn servers.
>>    
>>
>OK.
>
>  
>
>>I am tryng to manage connections initiated from network behind the 
>>openvpn server to my Lan segment ( with inbound nat, ie. to reach a Lan 
>>host on ssh service).
>>    
>>
>The only redirect rule on interface tun1 I can see is for RDP:
>rdr tun1 0.0.0.0/0 port 3389 -> 192.168.30.3 port 3389 tcp
>
>Second, as I mentioned earlier, you'll have to assign firewall rules for
>the redirect rule (inbound nat rule).
>
>BR,
>  PIT
>
>
>---------------------------------------------------------------------------
> copyleft(c) by |   _-_     I am NOT a kludge! I am a computer!   -- tts
> Peter Allgeyer | 0(o_o)0
>---------------oOO--(_)--OOo-----------------------------------------------
>
>
>
>---------------------------------------------------------------------
>To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
>For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>
>
>  
>
Hi Pit,
that's right.

At the moment the only redirect is for remote desktop connection from 
lan behind openvpn server to my lan segment 192.168.30.0/24.

The ssh connetion was only an example.

Anyway, the redirect "rdr tun1 0.0.0.0/0 port 3389 -> 192.168.30.3 port 
3389 tcp" does not work but I just dont know why.

Thanks

Cheers