I've set up a gateway/server system (from an old Mac Mini) that I want to do the following for my home network: host an OpenVPN connection, host a GlimmerBlocker proxy, host an L2TP VPN, and serve web pages (and maybe a few other functions as my needs change).
So far I have the OpenVPN connection set up with Viscosity and I share it to my other devices as per the instructions here; I also have the GlimmerBlocker proxy up and running. I have my L2TP VPN set up and web sharing turned on--but they don't work.
If OpenVPN is connected it blocks all other ports from being accessed from the Internet, i.e. port scans show all ports as "stealth". I figure my Mini is now like a Roach Motel--the packets can come in, but the sending device doesn't see them come back out since they're being returned from the OpenVPN IP. So, the question is, how can I keep my OpenVPN connection accessible to my network while allowing Internet access to various services? My best guess is that I can achieve this by properly configuring natd--I have WaterRoof to help me there--but I have no idea how to do it.
Is this possible? Can I set the system to return certain ports over the main IP and all else gets routed through OpenVPN?
Thanks!
So far I have the OpenVPN connection set up with Viscosity and I share it to my other devices as per the instructions here; I also have the GlimmerBlocker proxy up and running. I have my L2TP VPN set up and web sharing turned on--but they don't work.
If OpenVPN is connected it blocks all other ports from being accessed from the Internet, i.e. port scans show all ports as "stealth". I figure my Mini is now like a Roach Motel--the packets can come in, but the sending device doesn't see them come back out since they're being returned from the OpenVPN IP. So, the question is, how can I keep my OpenVPN connection accessible to my network while allowing Internet access to various services? My best guess is that I can achieve this by properly configuring natd--I have WaterRoof to help me there--but I have no idea how to do it.
Is this possible? Can I set the system to return certain ports over the main IP and all else gets routed through OpenVPN?
Thanks!
