Aleksey Tsalolikhin a écrit :
[root@vulture ~]# telnet -b 192.168.2.131 www.google.com 80
telnet: invalid option -- b
Well, the telnet client in RedHat does not seem to support this option
while the one in Debian does. You may try nc (netcat) instead.
$ nc -v -s 192.168.2.133 www.google.com 80
Note that from your tcpdump trace ppp0's address seem to be varying. Use
the current one.
I've tried running tcpdump on the web server as well, and I don't see
ANY packets coming in from the VPN server when I run "telnet website
80" on the pptp client... (the CentOS box).
Could I be running into 1a?
I'm afraid so.
If I don't use iptables, and just set up a static route for that web
site via the PPTP server, and telnet to website 80, it works!!
[...]
So why does it work with static route and doesn't work with the alt
routing table trick? The only difference I can see is, in the static
route case, the packets are a little bit smaller.
The difference is the source address, as explained in my previous posts.
Any ideas?
Yes, one :
iptables -t nat -A POSTROUTING -o ppp0 -j MASQUERADE
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html