This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Question NAT Masquerading

Hello,

our internal lan clients are masqueraded on the eth1 (external) interface. Now i have created a vpn-connection on this interface. The remote VPN-target should only "see" my external eth1 IP. Is the masquerading suitable to do that?

This thread was automatically locked due to age.

0 VelvetFog over 20 years ago

[ QUOTE ]
Hello, our internal lan clients are masqueraded on the eth1 (external) interface. Now i have created a vpn-connection on this interface. The remote VPN-target should only "see" my external eth1 IP. Is the masquerading suitable to do that?

[/ QUOTE ]What do you meen by the remote VPN-target only "seeing" the external eth1 IP?

When you open up a VPN connection, you have an encrypted tunnel from the remote VPN client that routes traffic to and from your Internal network connected to the ASL box. If you want the remote VPN client to also be able to access the Internet back out through the eth1 WAN connection, then you can create another masq rule that masquerades the VPN address range behind the eth1 interface. This will work the same way as masquerading the Internal network behind the eth1 WAN interface.
Cancel
Vote Up 0 Vote Down

Cancel