Danke Stefan für deine strukturierte Vorgehensweise
ip addr show
lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
link/ether b8:27:eb:f3:c5:0d brd ff:ff:ff:ff:ff:ff
inet 192.168.0.110/24 brd 192.168.0.255 scope global eth0
valid_lft forever preferred_lft forever
inet6 fe80::4f1e:1575:4c05:5e31/64 scope link
valid_lft forever preferred_lft forever
4: wlan0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UP group default qlen 1000
link/ether 00:12:0e:e2:7c:77 brd ff:ff:ff:ff:ff:ff
inet 192.168.8.50/24 brd 192.168.8.255 scope global wlan0
valid_lft forever preferred_lft forever
6: dns0: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1130 qdisc pfifo_fast state UNKNOWN group default qlen 500
link/none
inet 192.168.150.3/27 scope global dns0
valid_lft forever preferred_lft forever
8: vpn2: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UNKNOWN group default qlen 100
link/none
inet 10.8.0.7/16 brd 10.8.255.255 scope global vpn2
valid_lft forever preferred_lft forever
inet6 fe80::2d48:beb2:f3d2:e8eb/64 scope link flags 800
valid_lft forever preferred_lft forever
9: tun0: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UNKNOWN group default qlen 100
link/none
inet 192.168.160.110 peer 192.168.160.109/32 scope global tun0
valid_lft forever preferred_lft forever
inet6 fe80::7059:c901:a99e:4c44/64 scope link flags 800
valid_lft forever preferred_lft forever
ip route show
default via 192.168.0.1 dev eth0 src 192.168.0.110 metric 202
default via 192.168.8.1 dev wlan0 metric 400
10.8.0.0/16 dev vpn2 proto kernel scope link src 10.8.0.7
192.168.0.0/24 dev eth0 proto kernel scope link src 192.168.0.110 metric 202
192.168.8.0/24 dev wlan0 proto kernel scope link src 192.168.8.50 metric 304
192.168.150.0/27 dev dns0 proto kernel scope link src 192.168.150.3
192.168.160.109 dev tun0 proto kernel scope link src 192.168.160.110
192.168.178.0/24 via 192.168.160.109 dev tun0
199.181.132.250 via 192.168.160.109 dev tun0
iptables -S
-P INPUT ACCEPT
-P FORWARD ACCEPT
-P OUTPUT ACCEPT
sudo iptables -t nat -S
-P PREROUTING ACCEPT
-P INPUT ACCEPT
-P OUTPUT ACCEPT
-P POSTROUTING ACCEPT
-A PREROUTING -s 192.168.0.111/32 -i eth0 -p tcp -m tcp --dport 14444 -j REDIRECT --to-ports 14444
-A PREROUTING -s 192.168.0.111/32 -i eth0 -p tcp -m tcp --dport 4444 -j REDIRECT --to-ports 4444
-A PREROUTING -s 192.168.0.111/32 -i eth0 -p tcp -m tcp --dport 1111 -j REDIRECT --to-ports 1111
-A PREROUTING -s 192.168.0.111/32 -i eth0 -p tcp -m tcp --dport 4009 -j REDIRECT --to-ports 4009
-A PREROUTING -s 192.168.0.111/32 -i eth0 -p tcp -m tcp --dport 4444 -j REDIRECT --to-ports 4444
-A PREROUTING -s 192.168.0.111/32 -i eth0 -p tcp -m tcp --dport 1111 -j REDIRECT --to-ports 1111
-A PREROUTING -s 192.168.0.111/32 -i eth0 -p tcp -m tcp --dport 4009 -j REDIRECT --to-ports 4009
Die doppelten Einträge rühren daher, dass ich das Problem hatte, dass sie nach einen Neustart einmal nicht gegriffen hatten. Daher lasse ich sie per cronjob @reboot nochmals hinzufügen nur um ganz sicher zu sein