Differences

This shows you the differences between two versions of the page.

--- tinctunnel [2020/07/16 07:07] – neoon
+++ tinctunnel [2021/11/25 22:42] (current) – external edit 127.0.0.1
@@ Line 3: / Line 3: @@
 You should already have a Tinc tunnel running between these 2 machines:
 [[tincvpn_setup|TincVPN Setup]] \\
-To ensure that data is getting forwarded to the gateway and back \\
+To ensure that data is getting forwarded to the gateway and back (Client) \\
-**Run this on the client** \\
   echo '100 TUNNEL' >> /etc/iproute2/rt_tables
   ip rule add from 10.0.0.0/24 table TUNNEL
   ip route add default via 10.0.0.1 table TUNNEL
-**Forward traffic on the gateway**
+**Forward traffic to specific IP** (Server)
-  # Masquerade outgoing traffic
+  iptables -t nat -A POSTROUTING -s 10.0.0.0/24 ! -o tun+ -j SNAT --to-source xxx.xxx.xxx.xxx
+  iptables -t nat -A POSTROUTING -o tun0 -j MASQUERADE
+  echo 1 > /proc/sys/net/ipv4/ip_forward
+**Forward traffic via default gateway** (Server)
   iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
   iptables -t nat -A POSTROUTING -o tun0 -j MASQUERADE
-  # Allow return traffic
+  echo 1 > /proc/sys/net/ipv4/ip_forward
-  iptables -A INPUT -i eth0 -m state --state RELATED,ESTABLISHED -j ACCEPT
-  iptables -A INPUT -i tun0 -m state --state RELATED,ESTABLISHED -j ACCEPT
-  # Forward everything
-  iptables -A FORWARD -j ACCEPT
 **Test it**
   curl http://www.cpanel.net/showip.cgi --interface 10.0.0.2
-Sources: https://unix.stackexchange.com/questions/283801/iptables-forward-traffic-to-vpn-tunnel-if-open
+[[proxmox_tunnel_bridge_via_tinc| Tunnel bridge via Tinc VPN]]
+Sources:\\ https://unix.stackexchange.com/questions/283801/iptables-forward-traffic-to-vpn-tunnel-if-open \\
 https://wiki.buyvm.net/doku.php/gre_tunnel