Wow what a mission!
Today I tried to code on a project at work from home, i recently moved… so my new ip address haven’t been added to firewall rules etc etc.
Luckily for me one of my servers has been added to the fw before. Now to be a little bit creative I have setup a openvpn bridge to force all my connections on my laptop trough my new openvpn gateway! I have used openvpn allot before as a non bridged gateway to an private subnet but never as a kinda proxy gateway.
Here is the configurations i ended using:
Server:
port 1234
proto tcp
dev tun
ca keys/ca.crt
cert keys/server.crt
key keys/server.key
dh keys/dh1024.pem
ifconfig 192.168.2.1 192.168.2.2
server 192.168.2.0 255.255.255.0
client-config-dir ccd
#########
######### Put your Public DNS Servers here
######### 0.1.2.3 && 0.1.2.4 being your servers dns servers /etc/resolve.conf will reveal what they are. unless you have dhcp enabled… (queer)
push “dhcp-option DNS 0.1.2.3″
push “dhcp-option DNS 0.1.2.4″
ifconfig-pool-persist ipp.txt
push “redirect-gateway”
keepalive 10 120
comp-lzo
persist-key
persist-tun
status server-tcp.log
verb 3
user nobody
group nobody
the client configuration:
client
dev tun
proto tcp
#Change my.publicdomain.com to your public domain or IP address
remote my.server.com 1234
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
cert client.crt
key client.key
ns-cert-type server
#DNS Options here, CHANGE THESE !!
push “dhcp-option DNS 192.168.2.1″
comp-lzo
verb 3
it tooks a while but the reason why it didnt work at start was because i didnt have the right iptables rules… im such a nutter.
iptables -t nat -A POSTROUTING -s 192.168.2.6 -j SNAT –to 1.2.3.4
1.2.3.4 - being your external ip address
oh yea and dont forget to enable ipv4 forwarding
echo 1 > /proc/sys/net/ipv4/ip_forward
I am sure you will find allot of tutorials around but for some odd reason the 1st 3 i used didnt work properly… and well if time-capped like me i hope this saved you some time.
have fun ;)
jebus
so i went out and well it seems there is no nice girls left in london :(
Fresh start!
So its been a while since i have updated my blog and i comletely killed it off at some point too. I’m quite busy nowaday so dont be surprised if i dont update this blog to often, I will try my best though!
For those who don’t know me my name is francois raubenheimer and i am IT fanatic… I love anything and everything about computers, the internet and anything hacking related. That brings up the fact that you will mostly find hacking related articles on this blog and perhaps some rants about random things.
By the way I’m single and looking!!! for someone very hot and indy looking! anyone :?