Help w/ iptables: can't get the Cisco VPN client to work behind proxy
Hi,
I followed the tutorial here, http://sharadchhetri.com/2014/03/15/...helcentos-6-x/ I've setup a transparent proxy using squid and iptables, browsing and other tcp/udp services does work, however, I can't get the Cisco VPN client to work behind proxy. Any input will be appreciated. Thanks in advance! Below is the iptables script Quote:
|
First of all, since this is about a proprietary, closed source product, you should check its documentation (esp. the FAQ). (Also note the vendor has its own support forum.) Then you should know what type of protocol and ports the application uses. Then the single simplest quickest way to start troubleshooting iptables rule sets is to make "-j LOG" rules precede any other type of "decision" rule. And since you're routing specific traffic through another service you're expected to look at its log file and enable debug logging if it doesn't show any clues.
|
Also ... the Cisco device will know that it is operating behind a proxy. It might not like that. In fact, it might refuse to (or, be unable to) negotiate a connection that way. (Remember that, for example, the IP-address perceived by the client is now different from the address that will be perceived by the host as being "that client's address.") You should therefore examine logs on all fronts: what does the client say (e.g. with a "-v" command-line parameter or maybe several; what does the host say; and so on.
VPN is specifically designed to be absolutely obtuse and uninformative ... until ... "*click!* the lock quietly falls open" when exactly the proper sequence of events takes place. |
All times are GMT -5. The time now is 04:58 PM. |