Once again I have to build up a machine for OpenVPN. I have previously wrote articles about this but when I follow those instruction it still does not work. But first, let us talk about what I want to achieved. I just simply want to set up a road warrior configuration, i.e., I would like to have a machine, from any place, to securely access all the resource within our laboratory. This is not possible via public interface because the firewall rules block most of the port. Besides, it is not secure.
Now, the generic howto of OpenVPN will lead you to the point that you have the VPN connection between the client and the server, but no other machine on the client side or the server side is accessible by both side. My previous article tells you how to set up the routing on the client such that when it wish to connect to the other machine in the office, it should be routed through OpenVPN. This seems to work so far for my last machine but actually it does not on the new machine.
The problem is that
- I have to enable port forwarding on the server. This is already covered in OpenVPN howto here.
Specifically for ubuntu, you have to execute the following command.
$echo 1 > /proc/sys/net/ipv4/ip_forward
This is to tell the kernel to allow routing, now. However, this does not survive a reboot. For ubuntu, you have to add the following file to /etc/sysctl.conf
net.ipv4.ip_forward=1
- I also need to enable NAT on the server, for WinXP, this is not actually needed, but for my latest ubuntu machine, I have to execute the following command.
iptables -t nat -A POSTROUTING -s 10.8.0.0/24 -o eth0 -j MASQUERADEAnd that is enough.
Comments
Today, buy cheap nike air max
Today, buy cheap nike air max shoes is the right choice is not only good for your health, but also is convenient for walking and running or training, so most people want to come home or give as a gift to their friends or family! Marking happier! They are really a nice addition this summer for wardrobe.Welcome to visit our website where they have a variety of nike air max 95, nike air max 2009, Nike Air Max Tailwind,nike free shoes for you to choose.Certainly all our products are for sale, new and free shipping.Wish has a good experience Purchase here.
Nike air max shoes continues and continues to keep the heat out chirning new colors of nike air max 90 each with more and more interesting than the last. This is called the mens nike air max 90 of the University of Akron and is based on official school colors. It will have a top that is predominantly blue color and are made of patent leather rand gold Flywire and a white swoosh is bordered by gold trim.
30 JULY LRR Hester prynne
30 JULY LRR Hester prynne was brought back to jail JiLing after exposure to see her doctor’s UGG Classic Short identity, but Hester prynne refused to tell who is the father of the child, and she said to her JiLing stein from him there had never feel love UGG Bailey Button, JiLing ward, threat Hester prynne don’t reveal their relationship, he cannot suffer an unfaithful woman’s husband to suffer humiliation, otherwise, he will let her lover, ruin your reputation is not only his reputation, status UGG Classic Tall, and even his soul and life, Hester prynne promised. Hester prynne after prison, with his daughter by needle little pearl maintains life skills, solitary, the red A word will humiliation at the Hester prynne. Little pearl grow beautiful refined,UGG Boots Sale with stubborn disposition and abundant energy, she and the scarlet letter before the shine in the pilgrims, they are in the society, but also the symbol of UGG Classic Cardy shame only if they are bright. http://www.officalugg.com/products_all.html
Post new comment