Hi Experts,
I have problem with routing. i hope one of u can help me becouse i am now about 1 week busy and come not out of my problem

Here is my suation.

Open VPN sever:

Ip adres of OpenVPN sever:

OpenVPN client get IP range : -
SSH server port 22222

VPS (openVZ):

Network interface venet0: wan ip :xx.xx.xx.xx

Network interface tun0 : OpenVPN client IP:

Wat i want ssh connection to OpenVPN server via VPS from internet.

like this

internet ----> VPS(openVPN client) ----> OpenVPN server

Now i use this Iptables route

iptables -t nat -A PREROUTING -p tcp -m tcp --dport 22222 -j DNAT --to-destination
iptables -t nat -A POSTROUTING -o tun0 -d -p tcp -m tcp --dport 22222 -j SNAT --to
iptables -A FORWARD -d -p tcp -m tcp --dport 22222 -j ACCEPT
iptables -A FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT

Goes every think oke. i can make connection from internet to OpenVPN server throw Open VPN client.

But if i see ssh log it's says alway that connection come from openVPN client) en not the orginal WAN IP of machine where from i make connection.

Is possibale to get to make route in Iptables that if anybody logon on ssh server via openvpn client that i see his orginate IP en not the ip of OpenVPN client?

I hope u can help me out from this problem