hy

i have vpn server behind router. connections work.

setup is like this.

host system 11.11.11.11 centos
virtual system with vpn 22.22.22.22 centos

firewall is iptables and everithing is blocked expect vpn port.

from host system PREROUTING 11.11.11.11 to 22.22.22.22 and POSTROUTING 22.22.22.22 to 11.11.11.11

on vpn POSTROUTING 10.8.0.0/24 to 22.22.22.22 and POSTROUTING 22.22.22.22 to 11.11.11.11




i notice on server with wireshark that local ip of of host is connecting with ips of sites i browse. same time 11.11.11.11 is connected to public ip with vpn protocol.
what is strange i block everithing expect vpn port with ip tables. when i remove postrouting i can connect to vpn but then browsing dont work of course, then is not connecting to ips of sites. so something i belive is with postrouting and howe it handles connections.

what i understud from this makink ovp vpn and connecting from same network in my house doesent provide anonimiti like encription. beacouse router still need make dns request. i know that public ip remain same but beafore this i whas thinkink of vpn that he create tunnel to sites and that decriptino is made in tun interface but request is encrypted

is this normal or i missconfigured something?



on client side everithing is going throught vpn that is ok.

on openvpn forum i got answer that this is normal beacouse its NAT config. i will try in bridge and let you know.