What's new
By:

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

VPN setup and forwarding RDP port through OpenVPN Client

Martineau said:
Well either the Selective fwmark port 465 tagging never works?, or if it does indeed (though suddenly cease to) correctly force emails out via the WAN, then you should provide detailed diagnostics to fully substantiate what you mean by "seems to get lost"
Click to expand...

The Solution seems to be some delays.
#!/bin/sh

sleep 2

ip rule del fwmark 0x7000/0x7000 2> /dev/null
ip rule add fwmark 0x7000/0x7000 table 254 prio 9990
ip route flush cache

sleep 2

# Route secure email port to WAN and not VPN.
iptables -t mangle -D PREROUTING -i br0 -p tcp -m multiport --dport 465 -j MARK --set-mark 0x7000/0x7000 2> /dev/null
iptables -t mangle -A PREROUTING -i br0 -p tcp -m multiport --dport 465 -j MARK --set-mark 0x7000/0x7000

# Route RDP port through VPN tunnel
iptables -t mangle -D PREROUTING -i br0 --src 192.168.1.16 -p udp -m multiport --sport 3389 -j MARK --set-mark 0x7000/0x7000 2> /dev/null
iptables -t mangle -D PREROUTING -i br0 --src 192.168.1.16 -p tcp -m multiport --sport 3389 -j MARK --set-mark 0x7000/0x7000 2> /dev/null
iptables -t mangle -A PREROUTING -i br0 --src 192.168.1.16 -p udp -m multiport --sport 3389 -j MARK --set-mark 0x7000/0x7000
iptables -t mangle -A PREROUTING -i br0 --src 192.168.1.16 -p tcp -m multiport --sport 3389 -j MARK --set-mark 0x7000/0x7000
 
dlandon said:
The Solution seems to be some delays.
Click to expand...

I suspect that you could use a single 4 second delay at the start of the script rather two discrete 2 second delays, but not sure why the delay(s) are explicitly necessary in your environment - although having checked my nat-start script it does trundle through performing other junk before it adds my custom fwmark tagging stuff.:rolleyes:
dlandon said:
Code: 
# Route RDP port through VPN tunnel
Click to expand...
P.S. Shouldn't the above be
Code: 
# Route RDP port through WAN
;)
 
Martineau said:
I suspect that you could use a single 4 second delay at the start of the script rather two discrete 2 second delays, but not sure why the delay(s) are explicitly necessary in your environment - although having checked my nat-start script it does trundle through performing other junk before it adds my custom fwmark tagging stuff.:rolleyes:

P.S. Shouldn't the above be
Code: 
# Route RDP port through WAN
;)
Click to expand...

Yep.
 
You must log in or register to reply here.

Similar threads

J
VPN director Multiple OpenVPN clients
Replies
7
Views
616
eibgrad
eibgrad
J
trying to setup vpn client
Replies
2
Views
338
jayveesea
J
S
No internet for router clients (OpenVPN + stunnel)
Replies
6
Views
427
santer_av
S
G
Using VPN Director to route only torrent traffic through VPN
Replies
9
Views
917
goldnet
G
R
Open VPN per client configuration router help
Replies
10
Views
238
Tech9
Tech9
Similar threads
Thread starter Title Forum Replies Date
docta_v Is there any VPN provider with easy setup for port forwarding on Merlin? Asuswrt-Merlin 5
J trying to setup vpn client Asuswrt-Merlin 2
T Troubles with VPN Client + DDNS Setup on GT-BE98 Asuswrt-Merlin 5
garycnew Blank VPN Status Page Asuswrt-Merlin 9
S Solved How to configure VPN Director with VPN for external IPs and LAN for internal IPs? Asuswrt-Merlin 3
Z Change VPN Director to default enabled Asuswrt-Merlin 6
R Open VPN per client configuration router help Asuswrt-Merlin 10
T NORDVPN VPN Director Status Check Asuswrt-Merlin 5
Muscless ASUS router VPN to NAS only? Asuswrt-Merlin 2
C Asus RT-BE86U - VPN server speed issues Asuswrt-Merlin 6

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 2,055 (members: 17, guests: 2,038)
Back
Top