brent timothy saner on 22 Jan 2010 15:42:22 -0800


[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] Speaking of VPN....


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 01/18/10 19:53, David Coulson wrote:
> You can use iptables to do NAT between the subnets. You will need NAT
> rules on both sides to support this (e.g. NAT 192.168.1.x to 10.1.1.x
> going one way, and 192.168.1.x to 10.2.1.x the other). You will then
> have to access the remote systems via their alternative IP address
> scheme at the local side.
> 
> Or just renumber what you have at home :-)
> 
> On 1/18/10 8:51 PM, Brian Stempin wrote:
>> Hi David,
>> Thanks for the response.  I have a question about it:
>>
>> The remote network uses the same subnet addressing as my home
>> network.  How will my remote machine be able to communicate with
>> machine on my home network?
>>
>> Thanks,
>> Brian
>>
>>
>> ___________________________________________________________________________
>> Philadelphia Linux Users Group         --        http://www.phillylinux.org
>> Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
>> General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug
>>   
> 
> 
> ___________________________________________________________________________
> Philadelphia Linux Users Group         --        http://www.phillylinux.org
> Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
> General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug


totally late to this discussion, but:

___________________________________________________________________

Does anybody know how to remap local addresses, if I want to connect two
networks with an overlap in the private address range?

Using iptables 1.2.7a+ and the NETMAP target:

    iptables -t nat -A PREROUTING -d 192.168.0.0/24 -j NETMAP --to
192.168.1.0/24

or

    iptables -t nat -A POSTROUTING -d 192.168.1.0/24 -j NETMAP --to
192.168.0.0/24
__________________________________________________________________

via http://openvpn.net/index.php/open-source/faq.html :)

(need to keep up with the list more often)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.14 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAktaN9QACgkQ8u2Zh4MtlQrcNgCfSVCFcDn4Zi+5kT4TPIZqbWHm
iMUAn2NLl0YuCsHvenMiDcltLF4RKE8y
=Cmus
-----END PGP SIGNATURE-----
___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug