projects
/
wiki
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
|
inline
| side by side
(no commit message)
[wiki]
/
examples
/
masquerading-firewall.mdwn
diff --git
a/examples/masquerading-firewall.mdwn
b/examples/masquerading-firewall.mdwn
index
63377c1
..
6305950
100644
(file)
--- a/
examples/masquerading-firewall.mdwn
+++ b/
examples/masquerading-firewall.mdwn
@@
-72,13
+72,12
@@
The network setup is as follows:
> host# cat /etc/tinc/vpn/tinc.conf
> Name = atwork
> host# cat /etc/tinc/vpn/tinc.conf
> Name = atwork
-> Device = /dev/tun
> ConnectTo = home
>
> host# cat /etc/tinc/vpn/tinc-up
> #!/bin/sh
>
> ConnectTo = home
>
> host# cat /etc/tinc/vpn/tinc-up
> #!/bin/sh
>
-> ifconfig
vpn
192.168.10.20 netmask 255.255.0.0
+> ifconfig
$INTERFACE
192.168.10.20 netmask 255.255.0.0
>
> host# ls /etc/tinc/vpn/hosts
> atwork home
>
> host# ls /etc/tinc/vpn/hosts
> atwork home
@@
-158,7
+157,7
@@
The network setup is as follows:
>
> iptables -t nat -F POSTROUTING
> # Next rule prevents masquerading from altering source port of outbound tinc packets
>
> iptables -t nat -F POSTROUTING
> # Next rule prevents masquerading from altering source port of outbound tinc packets
-> iptables -t nat -A POSTROUTING -p udp -m udp -sport 655 -j MASQUERADE -o ppp0 --to-ports 655
+> iptables -t nat -A POSTROUTING -p udp -m udp -
-
sport 655 -j MASQUERADE -o ppp0 --to-ports 655
> iptables -t nat -A POSTROUTING -j MASQUERADE -o ppp0
>
> iptables -t nat -F PREROUTING
> iptables -t nat -A POSTROUTING -j MASQUERADE -o ppp0
>
> iptables -t nat -F PREROUTING