The other way is to basically do both DNAT and SNAT. The packet is basically
'proxied'  by your router. That way it comes back to you and you do
DNAT/SNAT and send it to the original source.

If you need to do this for just one port, Stunnel, or ssh tunnel, or
any other variant will work for you.

Prasanna.

On 4/25/07, Oenus Tech Services <[EMAIL PROTECTED]> wrote:
> Tom Eastep escribió:
> > Oenus Tech Services wrote:
>
> >> when I have the computer accessing through openvpn to my network, its IP
> >> is 192.168.135.14, so I thought this next rule would work, but it doesn't:
> >>
> >> DNAT net     vpn:192.168.135.14      tcp     3389
> >>
> >> Can anybody help me?
> >
> > Does the default route at 192.168.135.14 go back through the OpenVPN tunnel?
> > If not, this will never work.
> >
> > -Tom
>
> I'm afraid not. The default route is the internet router gateway ip,
> which could be anything depending where I'm connecting from. The route
> to the remote openvpn server is 192.168.135.13.
>
> Then my next question should go to the openvpn list, but I'll ask anyway
> here, in case someone has knowledge of it: can I do a push
> "redirect-gateway" for a specific openvpn client instead of doing it
> globally on the server?
>
> TIA,
>
> Ignacio
>
> -------------------------------------------------------------------------
> This SF.net email is sponsored by DB2 Express
> Download DB2 Express C - the FREE version of DB2 express and take
> control of your XML. No limits. Just data. Click to get it now.
> http://sourceforge.net/powerbar/db2/
> _______________________________________________
> Shorewall-users mailing list
> [email protected]
> https://lists.sourceforge.net/lists/listinfo/shorewall-users
>

-------------------------------------------------------------------------
This SF.net email is sponsored by DB2 Express
Download DB2 Express C - the FREE version of DB2 express and take
control of your XML. No limits. Just data. Click to get it now.
http://sourceforge.net/powerbar/db2/
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users

Reply via email to