LinuxQuestions.org
Help answer threads with 0 replies.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
Reload this Page Will IPTables w/ NAT conflict w/ OpenVPN?
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 07-19-2007, 03:46 PM   #1
licht
Member
 
Registered: Mar 2005
Location: chicago
Distribution: red hat 9.0
Posts: 59

Rep: Reputation: 15
Question Will IPTables w/ NAT conflict w/ OpenVPN?

Basically, this is what I want:

There are several branch offices and one headquarter. Each branch office and headquarter is configured as Intranet w/ private network addresses. There is a firewall for each Intranet, configured w/ IPTables. Intranet LAN to Intranet LAN is configured as site-to-site VPN, i.e., only traffic between pairs of firewall machines are VPNed.

So, for Intranet users to access Internet, we need to have NAT in IPTables.

I have not worked on a configuration, just wondered, will this NAT conflict with this site-2-site VPN? Users in branch offices need to access some internal servers in headquarter's LAN.

This seems to be a silly question, considering VPN is used to connect distributed offices (private network) via WAN. But I didn't figure out how both works together. Hope to hear some instructions here.

Thanks!
 
Old 07-19-2007, 08:22 PM   #2
rocket357
Member
 
Registered: Mar 2007
Location: 127.0.0.1
Distribution: OpenBSD-CURRENT
Posts: 485
Blog Entries: 174

Rep: Reputation: 74
I read an article on IpCop's design that explained how IpCop solved the problem, but I haven't been able to locate the article again. In short, the VPN and iptables/NAT have to "straddle" one-another. This way the VPN's can connect to one another without hassling with NAT issues, but you still get NAT functionality. If I find the article I'll post it.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
OpenVPN client has not default gateway when connect to OpenVPN server sailershen Linux - Security 3 03-04-2010 02:20 AM
IPTables is blocking my OpenVPN internet access! eponymous Linux - Security 2 01-23-2007 01:40 PM
iptables nat kernelvn Linux - Networking 5 05-03-2005 11:39 AM
IPTABLES : build NAT using IPTABLES joseph Linux - Networking 4 04-23-2004 05:08 AM
IPtables +NAT daromer Linux - Networking 1 01-07-2002 11:15 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 04:30 AM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration