NAT between incomming PPP and office network

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Howdy All;

I have been pulling my hair out over what is probably a simple
question.  I've been through lots of docs and the list archives, but
can't seem to find anything that works.

I have an unsecured wireless AP that connects to a Debian testing box
at eth2.  Clients PPTP to this box.  This puts them on PPP through an
encrypted link.  All that is working successfully.

eth2 is at 192.168.0.1 and wireless clients DHCP at 192.168.0.100-199
PPTP sets up PPP links with the master as 192.168.1.1 and
authenticated clients get 192.168.1.100-199

All that I already have working with Windows PPTP client on the
wireless end and PopTop on the Debian box.  Clients can ping each
other and the Linux box on the unencrypted WLAN; clients can ping down
the established PPP link to the Debian box.

What I'm having trouble with is getting the PPP clients to
nat/masq/whatever across the Debian box to eth1 which is my internal
office LAN.  I (tried to) setup a NAT on the Debian box like:

iptables -t nat -A POSTROUTING -o eth1 -j SNAT --to (ip already
assigned to eth1)

PPP clients can ping the address assigned to eth0 (used by a web
server hosted on the same box) and eth1, but don't get passed across
to other addresses on the LAN that eth0 and eth1 share.

How can I get all incoming PPP connections NATed across to eth1?  I'll
setup a restrictive firewall against the open WLAN, but I don't want
any filtering or firewalling between the PPP connections and the LAN,
just completely transparent NAting - as much as possible.  What have I
missed?

Thanks,
Matthew



[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux