[Openswan Users] Ports used by Openswan and enable internet browing from clients
Mateen Fugawala
mateen.fugawala at hotmail.com
Tue Jan 25 01:26:39 EST 2011
I have disabled IPTABLES as I don't really need them. Any other options?
From: Indunil Jayasooriya [mailto:indunil75 at gmail.com]
Sent: Tuesday, January 25, 2011 11:45 AM
To: Mateen Fugawala
Cc: Paul Wouters; Willie Gillespie; users at openswan.org
Subject: Re: [Openswan Users] Ports used by Openswan and enable internet
browing from clients
On Tue, Jan 25, 2011 at 11:32 AM, Mateen Fugawala
<mateen.fugawala at hotmail.com> wrote:
How do I get my clients to the internet when connected to the VPN? I believe
that is disabled by default?
Below rules will do the job.
DSTVPNNETWORK/16 is the network you access through VPN tunnel . This rule
should be in placed first.
iptables -t nat -A POSTROUTING -o eth1 -d DSTVPNNETWORK/16 -j ACCEPT
Then,
iptables -t nat -A POSTROUTING -o eth1 -s YOURLAN/24 -j SNAT
--to-source extipofvpngateway
Pls replace YOURLAN/24 and extipofvpngateway with yours. Pls also note eth1
is connected to the internet. Pls replace with yours and be happy. If u r
happy, I will rejoice it.
--
Thank you
Indunil Jayasooriya
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20110125/757507e8/attachment.html
More information about the Users
mailing list