OpenVPN tun 如何連線到內部私有網段

[tony]

啟用forward功能
echo 1 > /proc/sys/net/ipv4/ip_forward
iptables -t nat -A POSTROUTING -s 10.8.0.0/24 -o eth0 -j MASQUERADE

讓vpn的虛擬網卡在server開放input/​output
iptables -A INPUT -i tun+ -j ACCEPT
iptables -A OUTPUT -o tun+ -j ACCEPT

開放server端的vpn與實體網路進出FORW​ARD eth->vpn
iptables -A FORWARD -i eth* -o tun+ -j ACCEPT
iptables -A FORWARD -i tun+ -o eth* -j ACCEPT

server.conf
push “192.168.128.0 255.255.255.0″