On Thu, Jul 18, 2013 at 08:44:36AM +0200, XaviP wrote: > En una openvpn semblant, amb openwrt al client, vaig haver d'incloure un > enmascarament al client perque els paquets sabèssin tornar: > > iptables -t nat -A POSTROUTING -o tun0 -j MASQUERADE > > I també, al router d'internet, vaig haver de incloure una route pel rang > de la vpn cap al server. > > Però no sé si és d'ajuda en el teu cas. > Sort i salutacions! Gràcies per la resposta. No m'havia fixat que l'Android té habilitat l'iptables; provaré a desactivar-lo/afegir aquesta regla que comentes. De totes maneres, entenc que al servidor l'enrutament hauria de funcionar, no? servidor:/# traceroute www.google.com -i tun0 traceroute to www.google.com (173.194.34.20), 30 hops max, 60 byte packets 1 * * * 2 * * * 3 ^C D'altra banda, se m'havia oblidat comentar-ho, però: servidor:/# cat /proc/sys/net/ipv4/ip_forward 1 Gràcies! -- Adrià García-Alzórriz adria@fsfe.org GPG Key: 09494C14 A computer salesman visits a company president for the purpose of selling the president one of the latest talking computers. Salesman: "This machine knows everything. I can ask it any question and it'll give the correct answer. Computer, what is the speed of light?" Computer: 186,282 miles per second. Salesman: "Who was the first president of the United States?" Computer: George Washington. President: "I'm still not convinced. Let me ask a question. Where is my father?" Computer: Your father is fishing in Georgia. President: "Hah!! The computer is wrong. My father died over twenty years ago!" Computer: Your mother's husband died 22 years ago. Your father just landed a twelve pound bass.
Attachment:
signature.asc
Description: Digital signature