On 11/4/2013 10:04 PM, Mark D. Montgomery II wrote: > I'm trying to use my VPS server (single interface of course) as somewhat > of a VPN gateway to my other location (which is not accessible directly > from some places) where the openvpn server is running, and am kind of > lost as to what to try next. > > I tried a redirect rule, but apparently shorewall didn't like that (it > just failed to start). > I tried adding the rules via command line directly from a bit of > searching I did: > > sysctl net.ipv4.ip_forward=1 > iptables -t nat -A PREROUTING -p udp --dport 1194 -j DNAT > --to-destination <siteb ip>:1194 > iptables -t nat -A POSTROUTING -j MASQUERADE > > When I did that dmesg gave Forward:Reject messages. > > Can someone point me to the correct way to do this?
That is Shorewall FAQ 2 with the 'loc' zone replaced by the 'net' zone. Also note FAQ 2c. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ November Webinars for C, C++, Fortran Developers Accelerate application performance with scalable programming models. Explore techniques for threading, error checking, porting, and tuning. Get the most from the latest Intel processors and coprocessors. See abstracts and register http://pubads.g.doubleclick.net/gampad/clk?id=60136231&iu=/4140/ostg.clktrk
_______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
