From owner-freebsd-net@FreeBSD.ORG  Fri Dec 19 12:48:27 2008
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 567381065670
	for <freebsd-net@freebsd.org>; Fri, 19 Dec 2008 12:48:27 +0000 (UTC)
	(envelope-from freebsd@bitfreak.org)
Received: from srv.twinthornes.com (srv.twinthornes.com [65.75.198.146])
	by mx1.freebsd.org (Postfix) with ESMTP id BD98F8FC08
	for <freebsd-net@freebsd.org>; Fri, 19 Dec 2008 12:48:26 +0000 (UTC)
	(envelope-from freebsd@bitfreak.org)
Received: from [10.9.70.104] (c-76-27-226-62.hsd1.wa.comcast.net
	[76.27.226.62])
	by srv.twinthornes.com (Postfix) with ESMTPSA id 182CC24C6A;
	Fri, 19 Dec 2008 04:30:31 -0800 (PST)
Message-ID: <494B93E3.5020202@bitfreak.org>
Date: Fri, 19 Dec 2008 04:30:27 -0800
From: Darren Pilgrim <freebsd@bitfreak.org>
User-Agent: Thunderbird 2.0.0.18 (Windows/20081105)
MIME-Version: 1.0
To: Noah Silverman <noah@webclipping.com>
References: <E35F3ECA-9084-4C96-B4CE-D51E8E76A4A0@webclipping.com>
In-Reply-To: <E35F3ECA-9084-4C96-B4CE-D51E8E76A4A0@webclipping.com>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Cc: freebsd-net@freebsd.org
Subject: Re: Surf outside Internet through VPN
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 19 Dec 2008 12:48:27 -0000

Noah Silverman wrote:
> I want to find a way to pass ALL traffic from my laptop THROUGH my  
> office VPN and then out to the Internet.  This is a "road warrior"  
> setup. This gives me a few benefits:  1) I can check my email securely  
> through VPN.  2) No matter where I am, I will always have the external  
> IP of my VPN server when accessing the web.
> 
> I have setup a VPN.  Was able to get it working with either tun or tap  
> interfaces.  That part seems OK.
> 
> Now what??  (I can see and connect to the VPN server with '10.0.8.1'  
> easily.  I can't see or connect to the outside world.)  Do I need to  
> add some kind of special route in the routing table?

If you can talk to arbitrary hosts on your office network--not just the 
VPN server--setting your default router to the office's gateway will 
achieve what you want.