port forwarding - multiple IP's and openvpn
Hi folks,
my ISP has assigned multiple IP's to my WAN interface. I wish to use eth0:1 to port forward to a web server who is on the other end of an openvpn tunnel (bridge mode - tap0)
I've tried:
iptables -t nat -A PREROUTING -p tcp --dport 80 -d xx.xx.xx.xx -i eth0 -j DNAT --to-destination 10.87.0.14:80
which doesn't work. The web browser just hangs on "Connecting to". From this server, I can ping 10.87.0.14.
Looking at tcpdump, I see port 80 traffic comming into the box but no sign of it leaving via tap0.
Since openvpn is in bridge mode, tap0 has an IP from the local subnet where the web server is.
There are no other iptables rules running on the box
Thanks
|