I see alot of postsgoing around about "How to use port forwarding with a VPN client"
i too had problems. I had a StrongVPN OpenVPN account. I wanted to use a router so my whole house could hide behind the VPN.
i tried DD-WRT with no luck. So i started working with Merlin.
I got the VPN working great on Merlin with my Asus RT-N66U.
but i could not gain external access to my internal services after i established a VPN connection. I understood why because i knew my external IP address is changed to the StrongVPN VPN servers address. Even with that knowledge though, I could not access my internal services.
what i had to do was edit my iptables via SSH;
via the Merlin web interface, i enabled SSH. I logged into SSH with Putty using my web admin user name and password. I entered the commands below to get it working.
iptables -t nat -I PREROUTING -p tcp --dport 8090 -j DNAT --to 192.168.1.80:8090
iptables -I FORWARD -p tcp -d 192.168.1.90 --dport 8090 -j ACCEPT
iptables -t nat -I PREROUTING -p tcp --dport 8443 -j DNAT --to 192.168.1.80:8443
iptables -I FORWARD -p tcp -d 192.168.1.90 --dport 8443 -j ACCEPT
iptables -t nat -I PREROUTING -p tcp --dport 57723 -j DNAT --to 192.168.1.115:57723
iptables -I FORWARD -p tcp -d 192.168.1.115 --dport 57723 -j ACCEPT
iptables -t nat -I PREROUTING -p tcp --dport 5109 -j DNAT --to 192.168.1.90:5109
iptables -I FORWARD -p tcp -d 192.168.1.90 --dport 5109 -j ACCEPT
iptables -t nat -I PREROUTING -p tcp --dport 32400 -j DNAT --to 192.168.1.90:32400
iptables -I FORWARD -p tcp -d 192.168.1.90 --dport 32400 -j ACCEPT
So, now i have access to all my services using the StrongVPN IP address.
my question is, will a reboot kill all those entries? is there a way to make them stick?
thanks
i too had problems. I had a StrongVPN OpenVPN account. I wanted to use a router so my whole house could hide behind the VPN.
i tried DD-WRT with no luck. So i started working with Merlin.
I got the VPN working great on Merlin with my Asus RT-N66U.
but i could not gain external access to my internal services after i established a VPN connection. I understood why because i knew my external IP address is changed to the StrongVPN VPN servers address. Even with that knowledge though, I could not access my internal services.
what i had to do was edit my iptables via SSH;
via the Merlin web interface, i enabled SSH. I logged into SSH with Putty using my web admin user name and password. I entered the commands below to get it working.
iptables -t nat -I PREROUTING -p tcp --dport 8090 -j DNAT --to 192.168.1.80:8090
iptables -I FORWARD -p tcp -d 192.168.1.90 --dport 8090 -j ACCEPT
iptables -t nat -I PREROUTING -p tcp --dport 8443 -j DNAT --to 192.168.1.80:8443
iptables -I FORWARD -p tcp -d 192.168.1.90 --dport 8443 -j ACCEPT
iptables -t nat -I PREROUTING -p tcp --dport 57723 -j DNAT --to 192.168.1.115:57723
iptables -I FORWARD -p tcp -d 192.168.1.115 --dport 57723 -j ACCEPT
iptables -t nat -I PREROUTING -p tcp --dport 5109 -j DNAT --to 192.168.1.90:5109
iptables -I FORWARD -p tcp -d 192.168.1.90 --dport 5109 -j ACCEPT
iptables -t nat -I PREROUTING -p tcp --dport 32400 -j DNAT --to 192.168.1.90:32400
iptables -I FORWARD -p tcp -d 192.168.1.90 --dport 32400 -j ACCEPT
So, now i have access to all my services using the StrongVPN IP address.
my question is, will a reboot kill all those entries? is there a way to make them stick?
thanks