> You need DNAT, as described here: > > https://shorewall.org/two-interface.htm#DNAT
Ok. That is what I started with. There is no advice or example there for how to get that traffic through the VPN to the back end server. Can you help with the rules? My test for this working is to telnet -4 1.2.3.4 1234 from any public site and to get a response from the back end server. If I have a service ON the external server I am able to give access to it. But so far, if there is no service on the external server, only on the internal one, across the VPN, I only get telnet -4 1.2.3.4 1234 Trying 1.2.3.4... telnet: connect to address 1.2.3.4: Connection refused Jan _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
