Re: VPN & NAT

To: gtg166a@mail.gatech.edu, debian-user@lists.debian.org
Subject: Re: VPN & NAT
From: "mike" <mike@heri.sd57.bc.ca>
Date: Sun, 21 Mar 2004 19:59:08 -0800
Message-id: <[🔎] 20040322035005.M80871@heri.sd57.bc.ca>
In-reply-to: <[🔎] 200403211905.12068.gtg166a@mail.gatech.edu>
References: <[🔎] 200403211905.12068.gtg166a@mail.gatech.edu>

On Sun, 21 Mar 2004 19:05:11 -0500, Matt Peter wrote
> Hello All,
> 
> I'm currently attempting to get VPN (windows 2000 remote access) 
> working through a nat setup.  I'm having problems, and I know there 
> are some special things I need to setup to get this to work, but I'm 
> having trouble finding a good guide to this process.  Does anyone 
> have a resources they could point me to for setting this up?  The 
> box is currently running stable (2.2), but I can upgrade to 2.4 is 
> it's easier to VPN over NAT running

I've only tested with a 2.4 kernel, but I've found that the ipmasq package 
installed will block vpn traffic.
www.tldp.org may have some more info for NAT or VPN.
I blank out all my rules with iptables and then throw in the one masqing rule
to allow all traffic out. Perhaps try that for connecting to your VPN Server.
Rule for ipmasq:
# iptables -t nat -I POSTROUTING -s localnet/24 -j MASQUERADE

If thats successful, then you'll have to edit your iptables so your
NAT box is locked down of course.

Cheers,
Mike

Reply to:

References:
- VPN & NAT
  - From: Matt Peter <gtg166a@mail.gatech.edu>

Prev by Date: Re: supported nics
Next by Date: Error trying to install Qmail on Debian
Previous by thread: VPN & NAT
Next by thread: Re: VPN & NAT
Index(es):
- Date
- Thread