iptables & vpn

z3pp0 · 09-20-2004, 04:31 AM

Hi everyone,

I have successfully set up a pptp VPN on one of linux boxes. In order for a vpn client see the internal network, i added an iptables rule, telling it to nat all packets from the ppp interface to the eth0 interface. I am still having a problem with packets not being broadcasted to the ppp interface, so as a result i am not seeing samba workgroups or applettalk networks.

Can someone tell me if it is possible in iptables for all traffic being routed to eth0, to be forwarded to ppp also? this way i can get all broadcasts on the local network being sent to my vpn.

Your help will be greatly appreciated.

z3pp0 · 09-20-2004, 08:00 PM

Demonbane · 09-20-2004, 08:28 PM

Try adding "proxyarp" to your ppp options
Also I don't think its neccesary to do NAT, as long as other hosts on the LAN knows how to get to the remote client (eg using the VPN server as the gateway), it should be fine.

z3pp0 · 09-21-2004, 02:37 AM

hey there,

thanks for replying.

This is what i have as my ppp options

Code:

lock
proxyarp
auth
require-mppe
require-mschap-v2

So proxyarp is activated but it still does not forward packets. The VPN is also on the gateway and when i try to ping my VPN client ipaddress from the gateway eth0, it does not reply.