Review your favorite Linux distribution.
Go Back > Forums > Linux Forums > Linux - Security
User Name
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.


  Search this Thread
Old 07-19-2007, 03:46 PM   #1
Registered: Mar 2005
Location: chicago
Distribution: red hat 9.0
Posts: 59

Rep: Reputation: 15
Question Will IPTables w/ NAT conflict w/ OpenVPN?

Basically, this is what I want:

There are several branch offices and one headquarter. Each branch office and headquarter is configured as Intranet w/ private network addresses. There is a firewall for each Intranet, configured w/ IPTables. Intranet LAN to Intranet LAN is configured as site-to-site VPN, i.e., only traffic between pairs of firewall machines are VPNed.

So, for Intranet users to access Internet, we need to have NAT in IPTables.

I have not worked on a configuration, just wondered, will this NAT conflict with this site-2-site VPN? Users in branch offices need to access some internal servers in headquarter's LAN.

This seems to be a silly question, considering VPN is used to connect distributed offices (private network) via WAN. But I didn't figure out how both works together. Hope to hear some instructions here.

Old 07-19-2007, 08:22 PM   #2
Registered: Mar 2007
Distribution: OpenBSD-CURRENT
Posts: 485
Blog Entries: 187

Rep: Reputation: 74
I read an article on IpCop's design that explained how IpCop solved the problem, but I haven't been able to locate the article again. In short, the VPN and iptables/NAT have to "straddle" one-another. This way the VPN's can connect to one another without hassling with NAT issues, but you still get NAT functionality. If I find the article I'll post it.


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
OpenVPN client has not default gateway when connect to OpenVPN server sailershen Linux - Security 3 03-04-2010 02:20 AM
IPTables is blocking my OpenVPN internet access! eponymous Linux - Security 2 01-23-2007 01:40 PM
iptables nat kernelvn Linux - Networking 5 05-03-2005 11:39 AM
IPTABLES : build NAT using IPTABLES joseph Linux - Networking 4 04-23-2004 05:08 AM
IPtables +NAT daromer Linux - Networking 1 01-07-2002 11:15 AM > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 04:03 AM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration