i have set up a vpn server…and there i’m sharing a internet connection…
and now i have set the ip-range for vpn and i have a ip range for my local area…
Lan and wlan - Nod1 - 192.168.10.0/24 and Nod2 - 192.168.11.0/24
vpn ip - 170.0.51.0/24
i have figured out how to masqurade the vpn ip that is going trough bridge but i have connected trough wlan and rip-routing another client so i have try to masqurade the ip that is going trough the wlan1 (client) but when i masqurade it wont show the lan ip …instead it show the ip from routing…(10.0.40.30)
Well marek001 - you have not supplied enough information for anyone to help you…
Here -
and now i have set the ip-range for vpn and i have a ip range for my local area…
Lan and wlan - Nod1 - 192.168.10.0/24 and Nod2 - 192.168.11.0/24
vpn ip - 170.0.51.0/24
You talk about 192.x… and 170.x… and then below you say -
i have figured out how to masqurade the vpn ip that is going trough bridge but i have connected trough wlan and rip-routing another client so i have try to masqurade the ip that is going trough the wlan1 (client) but when i masqurade it wont show the lan ip …instead it show the ip from routing…(10.0.40.30)
Talking about 10.0.40.30 - that was no where in the first part…and you’re talking about a bridge - also not mentioned in the first portion…so you need to show your Interfaces, IP addresses, VLAN setup, IP routes and IP Firewall, NAT, Mangle if you want any real help.
i have 2 rb on that are connected trough wireless…
the protocol i use to link them is rip-routing and the adress of the link is :
10.40.3.100/24 <—first rb (wlan1)
10.40.4.100/24 <—second rb (wlan2)
on rb1 i have briged ethernet and trought a lan-switch connected 5 pc…lan ip (192.168.0.0/24)
on rb2 i have bridged ethernet but im only using it so that i can share internet connection…
on rb2 i have set up a pppoe client and a pptp-server(vpn) and i have give a ip rang to that vpn…170.0.40.0/24
on rb2 i have only 1 firewall and 1 nat rule
/ip firewall filter add chain=forward src-address=!170.0.40.0/24 out-interface=pppoe-out1 action=masquerade
/ip firewall nat add chain=srcnat out-interface=pppoe-out1 action=masquerade
and now when a client from rb1 connect to vpn he become a ip…170.0.40.1 <—this ip is only that he can access the internet…not for lan…but when he decide to connect to a server that is on lan…he become ip 170.0.40.1 but not the ip 10.40.3.1…that ip that he acualy use…
when i have connect a user trought rb1 he to become a ip 170.0.40.2 but ihave managed to masqurade this…
ip firewall nat add chain=srcnat out-interface=lan src-address=170.0.40.0/24 dst-address=10.40.0.3/24 action=masquerade