WAP/Router for use with OpenVPN

Ben Scott dragonhawk at gmail.com
Tue Jul 7 12:13:19 EDT 2009


On Tue, Jul 7, 2009 at 12:03 PM, Thomas Charron<twaffle at gmail.com> wrote:
> The UDP packets are mapped by to<=>from IP ...

  Your firewall or NAT was broken or misconfigured.  A proper
implementation looks at not just the IP addresses, but the source and
destination port numbers.  Looking at just the IP addresses would also
break TCP.

  Linux IP Tables does the right thing.  So did the old IP Chains
(kernel 2.2) within it's limited NAT capabilities ("IP masquerading").

-- Ben


More information about the gnhlug-discuss mailing list