Hi Misc, I have an OpenBSD 4.5 amd64 as a VPN server (OpenVPN) connected to Internet on em0 through the gateway 192.168.1.1. VPN Users connect from the outside and get a tun0 interface with an address on 10.8.0.0/24.
I want VPN users to access Internet through my VPN server, so I have the proper routing rules setup. BUT my OpenBSD won't NAT traffic from 10.8.0.0/24 to em0. It will route the packets outside, but the source address remains 10.8.0.6, which is unfortunate. Here's my /etc/pf.conf: scrub in all nat pass log on em0 from tun0:network to any -> (em0) nat pass log on em0 from em0:network to any -> (em0) pass in quick on lo0 all pass out quick on lo0 all pass out on em0 keep state pass out on tun0 keep state pass in on em0 pass in on tun0 I used the second NAT rule above to verify that the NAT worked on the local interface without tunnelling. If someone has an idea on how to solve this, it would be greatly appreciated. Thanks. SB
