Subject: Re: Port sharing?
To: Ignatios Souvatzis <>
From: Daniel Carosone <>
List: tech-net
Date: 05/14/2005 19:59:58
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Sat, May 14, 2005 at 11:36:19AM +0200, Ignatios Souvatzis wrote:
> On Sat, May 14, 2005 at 11:31:22AM +0200, Ignatios Souvatzis wrote:
> > You could use ipf+ipnat (at your customers site) to remap _your_
> > endpoint of the VPN server to an internal address/port that the OpenVPN
> > server listens to, and the all other external addresses to an internal
> > address/port that the httpd+ssl is listening to.
> Here I assume that your machine is the only remote OpenVPN endpoint. I
> just realized that maybe you're using OpenVPN to connect road warriors?
> In that case, this wouldn't work.

You make the remote clients connect from a given source port (range)
that the server nat can recognise and direct appropriately.

Or you make the client somewhat http aware, so that it connects to a
server running as a web app.


Content-Type: application/pgp-signature
Content-Disposition: inline

Version: GnuPG v1.4.1 (NetBSD)