Step 5: Configuring NAT Rules

Jamf Connect Documentation
Solution
Application
Jamf Connect
Content Type
Technical Documentation
Utilities & Services
ft:locale
en-US
  1. Add NAT rules to allow WPA clients to use the IP address assigned to the VPN concentrator so that traffic can route through the VPC.
  2. Replace interface below with the interface name you found with ip a in a previous step. This will be enX0, eth0, eth0, ens1 or another similar value.
    sudo iptables -t nat -A POSTROUTING -s 192.168.253.0/24 -o interface -m policy --dir out --pol ipsec -j ACCEPT

    sudo iptables -t nat -A POSTROUTING -s 192.168.253.0/24 -o interface -j MASQUERADE
  3. Enter the following commands to ensure the IP tables configuration persists:
    sudo apt-get install iptables-persistent
sudo systemctl enable netfilter-persistent.service
sudo netfilter-persistent save