> iptables -N vpn
>
> iptables -A INPUT -i eth0 -p tcp --dport 5000 -j vpn
> iptables -A OUTPUT -i eth0 -p tcp --dport 5000 -j vpn
> iptables -A INPUT -i eth0 -p udp --dport 5000 -j vpn
> iptables -A OUTPUT -i eth0 -p udp --dport 5000 -j vpn
>
> iptables -A INPUT -i tun0 -j vpn
> iptables -A FORWARD -i tun0 -o eth1 -j vpn
> iptables -A FORWARD -i eth1 -o tun0 -j vpn
> iptables -A OUTPUT -o tun0 -j vpn
> iptables -A vpn -j ACCEPT
>
> iptables -t nat -A POSTROUTING -o tun0 -s 192.168.128.0/24 -j MASQUERADE
>
> Cosa ho toppato?
iptables -t nat -A POSTROUTING -o eth0 -s 10.8.0.0/24 -j MASQUERADE
dove 10.8.0.0 è la sottorete vpn.
Risolto da solo (con aiuto in realtà), ma grazei cmq dell'attenzione ^_^
--
Unix IS user friendly,
it's only selective
about its friend ^_^
gnu.mel@xxxxxxxxx
|