TRB255 Netmap sstp connection

Bjarne · October 16, 2023, 9:18am

I have set up a sstp client connection in the TRB255 to connect to our service server for remote connection to the unit. We use this connection to access the equiment connected to the TRB255. The incoming connection throug the sstp tunnel has the IP address in the range 172.20.74,0/24 and I need enter a rule to allow connection with dest. IP 172.20.74.0/24 and netmap this connection to 192.168.2.0/24… For the netmap I tried this rule

iptables -t nat -A PREROUTING -j NETMAP -i sstp1 -d 172.20.74.0/24 --to 192.168.2.0/24

But can’t get it to work. Any help is appreciated.

AndzejJ · October 18, 2023, 7:50am

Hello,

Since I am not aware of your configurations, could you please check from CLI/SSH (username ‘root’) if the iptable NAT rules are matched? You can use the following command to check NAT rules:

iptables -t nat -nvL

Check if the rules are matched.

Additionally, you can try to add rules to the SSTP chain:

iptables -t nat -A prerouting_sstp_rule -d 172.20.74.0/24 -j NETMAP --to 192.168.2.0/24
iptables -t nat -A postrouting_sstp_rule -s 192.168.2.0/24 -j NETMAP --to 172.20.74.0/24

Kind Regards,

system · October 31, 2023, 9:18am

This topic was automatically closed after 15 days. New replies are no longer allowed.