From: Grant Taylor <gtaylor@riverviewtech.net>
To: Mail List - Netfilter <netfilter@vger.kernel.org>
Subject: Re: VPN (interface) access for and all traffic through from single user -- how to do it?
Date: Fri, 15 Aug 2008 10:29:49 -0500 [thread overview]
Message-ID: <48A5A0ED.8010502@riverviewtech.net> (raw)
In-Reply-To: <200808151255.44987.janklodvan@gmail.com>
On 08/15/08 04:55, Jan Klod wrote:
> There is one thing really troubling me for fourth day and I hope,
> this is the right place to ask for advices: I have VPN access through
> LAN NIC, I managed to log in the VPN server and, using ping -I ppp0
> some.host.domain got an answer. Nothing more this far, but the
> initial goal was simply to grant an user access to VPN as toppic
> subject describes. Just like I would have started firefox -I ppp0!
>
> (all user's traffic through ppp0, while other users can still go
> through eth1!)
>
> Also this created an extra question: how web browser "knows", which
> interface should be used, if there are multiple?
(With out having even looked at the links you provided I'm going to take
a stab in the dark.)
I believe you are wanting to have your traffic go through the VPN as a
default rather than through your existing default gateway. (Presuming
that this is the case.)
Add a route to the IP address of your remote VPN end point via your
current default gateway. (Bring the VPN up if it is not already up.)
Add a new default gateway of the *inside* remote end of the VPN. Remove
your existing local default gateway. Or if you would like you can
change the metric of your existing local default gateway so that it is
higher (thus less preferred) than the default gateway on the other end
of the VPN.
Doing this will allow anything on the VPN client computer to route its
traffic through the VPN with out having to modify any thing specific to
each program.
Grant. . . .
next prev parent reply other threads:[~2008-08-15 15:29 UTC|newest]
Thread overview: 15+ messages / expand[flat|nested] mbox.gz Atom feed top
2008-08-15 9:55 VPN (interface) access for and all traffic through from single user -- how to do it? Jan Klod
2008-08-15 15:29 ` Grant Taylor [this message]
2008-08-15 16:14 ` Jan Klod
2008-08-15 16:28 ` Grant Taylor
2008-08-15 16:19 ` Jan Klod
[not found] ` <200808152212.59882.janklodvan@gmail.com>
[not found] ` <48A5F9E2.5080206@riverviewtech.net>
2008-08-16 20:47 ` Jan Klod
2008-08-17 4:30 ` Michael Alaimo
2008-08-17 5:01 ` Grant Taylor
2008-08-21 13:32 ` active interface? Jan Klod
2008-08-21 13:42 ` Jan Engelhardt
2008-08-21 14:27 ` Grant Taylor
2008-08-17 4:31 ` VPN (interface) access for and all traffic through from single user -- how to do it? Grant Taylor
2008-08-17 11:20 ` Jan Klod
2008-08-17 17:53 ` Grant Taylor
2008-08-22 20:40 ` Jan Klod
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=48A5A0ED.8010502@riverviewtech.net \
--to=gtaylor@riverviewtech.net \
--cc=netfilter@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox