[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Web openvpn.net

[Openvpn-users] Re: openvpn-2 tap and nat - understanding problem

  • Subject: [Openvpn-users] Re: openvpn-2 tap and nat - understanding problem
  • From: Charles Duffy <cduffy@xxxxxxxxxxx>
  • Date: Wed, 12 Jan 2005 13:36:08 -0600

Pretend your tap device is an actual ethernet card. If you were
configuring an ethernet network on a different IP range, you'd need to run
a DHCP daemon, configure iptables, and so forth. The same things apply to
your tap interface, and the conventional reference docs (such as the
Linux IP Masquerade HOWTO) apply. (Also, since you're giving it its own
IP range and masquerading, you can ignore all the instructions about
setting up a bridge).

That said, why would you want to use tap if they only access to the rest
of the network is masqueraded? You're losing the core advantages
(broadcast traffic and non-IP protocols) and paying a penalty in
performance and bandwidth costs as opposed to sticking with tun.

The SF.Net email is sponsored by: Beat the post-holiday blues
Get a FREE limited edition SourceForge.net t-shirt from ThinkGeek.
It's fun and FREE -- well, almost....http://www.thinkgeek.com/sfshirt
Openvpn-users mailing list