how to share VPN connection to instances in private subnet?

Multi tool use
Multi tool use


how to share VPN connection to instances in private subnet?



I created 2 instances:



I followed this guide and could make it work. VM-B can access internet (via VM-A): https://aws.amazon.com/premiumsupport/knowledge-center/vpc-nat-instance/



On VM-A I've setup OpenVPN and it can connect to our VPN server in our office.



Now I would like VM-B to be able to use the VPN connection of VM-A to access machines in our office but I can't find a way how to do it.



I think I know why it is not working, because in the route table of VM-B I have:


Destination Target
10.0.0.0/16 local
0.0.0.0/0 eni-xxxx



The network interface eni-xxxx belongs to VM-A. So the traffic is going there.



Instead I would like to add something like this but it seems not possible because "tun0" is not a valid resource ID:


Destination
10.100.7.2 (network in our office accessible via VPN)

Target
tun0 (the network interface created by OpenVpn)



Any advice on how to solve this issue?



Extra question:
Is it a good practice to add routes using the "route add" command or is it better to use the Web interface "Route Tables" in the VPC dashboard?




1 Answer
1



I found the solution. I was missing a rule in the firewall to masquerade the address.
On VM-A:


# the subnet of VM-B is 10.0.30.0/24
$ sudo iptables -t nat -A POSTROUTING -o tun0 -s 10.0.30.0/24 -j MASQUERADE






By clicking "Post Your Answer", you acknowledge that you have read our updated terms of service, privacy policy and cookie policy, and that your continued use of the website is subject to these policies.

eYG1,ZEPQV6o8Gl,4YmHm8K,gK vYxM9,0Uw5oqcxm3Iu
-
xLdlHqi6,Yg8t75,whw7JKvNqS8c JeV3lT

Popular posts from this blog

PHP contact form sending but not receiving emails

PHP contact form sending but not receiving emails I have created a contact form using PHP to send the data. The form seems to send fine as there are no errors and success message appears, however I am not receving the emails into the designated inbox. I am using PHPMailer as I originally tried just using the php 'mail' command which I now understand is a bit hit and miss. I cannot see why I would not be receving the emails so I would be very grateful for any help that could be given. I'm quite new to PHP so please be patient with me :) <?php use PHPMailerPHPMailerPHPMailer; use PHPMailerPHPMailerException; $msg = ""; if (isset($_POST['submit'])) { require 'phpmailer/src/Exception.php'; require 'phpmailer/src/PHPMailer.php'; require 'phpmailer/src/SMTP.php'; function sendemail ($to, $from, $body) { $mail = new PHPMailer(true); $mail->setFrom($from); $mail->addAddress($to); $ma...
Read more

Do graphics cards have individual ID by which single devices can be distinguished?

Do graphics cards have individual ID by which single devices can be distinguished? I have several graphics cards of the same manufacturer and same model and I want to distinguish them not only by the pcie socket they reside in but by some individual value I can read from the hardware. Is there such value and if so what would it be called and how could I access it? Right now I'm using modern nvidia cards (10xx series) and nvidia inspector.but I'd prefer if there was any value that was also applicable to amd. I have programming and scripting knowledge. I am running Windows 10 1 Answer 1 This is a powershell example to pull information from video cards. The DeviceID is supposed to be unique but only if the manufacturer supports Windows Display Driver Model (WDDM). (I copied this directly from docs.microsoft.com) $strComputer = "." $colItems = get-wmiobject -class "Win32_VideoC...
Read more

Create weekly swift ios local notifications

Create weekly swift ios local notifications I can create daily notifications but not weekly ones using swift 3 ios 10 User Notifications framework. Daily works fine but when I add in the .weekday parameter it doesn't send me a notification. The code is: for i in 1 ... 7 { let center = UNUserNotificationCenter.current(); let content = UNMutableNotificationContent(); content.title = "Title"; content.body = "content"; content.sound = UNNotificationSound.default(); var dateComponents = DateComponents(); dateComponents.weekday = i; // hours is 00 to 11 in string format if (daynight == "am") { dateComponents.hour = Int(hours); } else { dateComponents.hour = Int(hours)! + 12; } // mins is 00 to 59 in string format dateCom...
Read more