LinuxQuestions.org
Help answer threads with 0 replies.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Non-*NIX Forums > General
Reload this Page regd VPN (Shorewall + Routing and remote access)
User Name
Password
General This forum is for non-technical general discussion which can include both Linux and non-Linux topics. Have fun!

Notices


Reply
  Search this Thread
Old 01-31-2008, 11:46 AM   #1
nolinuxnollife
Registered User
 
Registered: Jan 2005
Location: india
Distribution: RedHat and Madrake
Posts: 55
Blog Entries: 1

Rep: Reputation: 15
regd VPN (Shorewall + Routing and remote access)

Hi Friends,

I have a Routing and Remote access server inside my LAN.
When I am inside the LAN I am able to successfully connect to the VPN server and obtainan IP.
My network is protected on shorewall firewall. I have made enough changes as directed in
http://www.shorewall.net/VPNBasics.html#Zones but
Jan 31 23:00:59 firewall kernel: Shorewall:wan2allROP:IN=eth1 OUT= MAC=00:14:85:ac:e5:ee:00:0f:e2:3e:23:99:08:00 SRC=219.65.161.252 DST=202.53.13.170 LEN=141 TOS=0x00 PREC=0x00 TTL=116 ID=16463 PROTO=UDP SPT=1701 DPT=1701 LEN=121
Jan 31 23:01:03 firewall kernel: Shorewall:all2all:ACCEPT:IN=eth1 OUT= MAC=00:14:85:ac:e5:ee:00:0f:e2:3e:23:99:08:00 SRC=219.65.161.252 DST=202.53.13.170 LEN=141 TOS=0x00 PREC=0x00 TTL=116 ID=16466 PROTO=UDP SPT=1701 DPT=1701 LEN=121
Jan 31 23:01:11 firewall kernel: Shorewall:all2all:ACCEPT:IN=eth1 OUT= MAC=00:14:85:ac:e5:ee:00:0f:e2:3e:23:99:08:00 SRC=219.65.161.252 DST=202.53.13.170 LEN=141 TOS=0x00 PREC=0x00 TTL=116 ID=16476 PROTO=UDP SPT=1701 DPT=1701 LEN=121
Jan 31 23:01:21 firewall kernel: Shorewall:all2all:ACCEPT:IN=eth1 OUT= MAC=00:14:85:ac:e5:ee:00:0f:e2:3e:23:99:08:00 SRC=219.65.161.252 DST=202.53.13.170 LEN=141 TOS=0x00 PREC=0x00 TTL=116 ID=16480 PROTO=UDP SPT=1701 DPT=1701 LEN=121
Jan 31 23:01:31 firewall kernel: Shorewall:all2all:ACCEPT:IN=eth1 OUT= MAC=00:14:85:ac:e5:ee:00:0f:e2:3e:23:99:08:00 SRC=219.65.161.252 DST=202.53.13.170 LEN=48 TOS=0x00 PREC=0x00 TTL=116 ID=16482 DF PROTO=TCP SPT=2546 DPT=1723 WINDOW=16384 RES=0x00 SYN URGP=0
Jan 31 23:01:31 firewall kernel: Shorewall:all2all:ACCEPT:IN=eth1 OUT= MAC=00:14:85:ac:e5:ee:00:0f:e2:3e:23:99:08:00 SRC=219.65.161.252 DST=202.53.13.170 LEN=48 TOS=0x00 PREC=0x00 TTL=116 ID=16483 DF PROTO=TCP SPT=2546 DPT=1723 WINDOW=16384 RES=0x00 SYN URGP=0
Jan 31 23:01:32 firewall kernel: Shorewall:all2all:ACCEPT:IN=eth1 OUT= MAC=00:14:85:ac:e5:ee:00:0f:e2:3e:23:99:08:00 SRC=219.65.161.252 DST=202.53.13.170 LEN=48 TOS=0x00 PREC=0x00 TTL=116 ID=16485 DF PROTO=TCP SPT=2546 DPT=1723 WINDOW=16384 RES=0x00 SYN URGP=0
Jan 31 23:01:35 firewall kernel: Shorewall:all2all:ACCEPT:IN=eth1 OUT= MAC=00:14:85:ac:e5:ee:00:0f:e2:3e:23:99:08:00 SRC=219.65.161.252 DST=202.53.13.170 LEN=141 TOS=0x00 PREC=0x00 TTL=116 ID=16489 PROTO=UDP SPT=1701 DPT=1701 LEN=121
Jan 31 23:01:36 firewall kernel: Shorewall:all2all:ACCEPT:IN=eth1 OUT= MAC=00:14:85:ac:e5:ee:00:0f:e2:3e:23:99:08:00 SRC=219.65.161.252 DST=202.53.13.170 LEN=141 TOS=0x00 PREC=0x00 TTL=116 ID=16491 PROTO=UDP SPT=1701 DPT=1701 LEN=121
Jan 31 23:01:38 firewall kernel: Shorewall:all2all:ACCEPT:IN=eth1 OUT= MAC=00:14:85:ac:e5:ee:00:0f:e2:3e:23:99:08:00 SRC=219.65.161.252 DST=202.53.13.170 LEN=141 TOS=0x00 PREC=0x00 TTL=116 ID=16493 PROTO=UDP SPT=1701 DPT=1701 LEN=121
Jan 31 23:01:42 firewall kernel: Shorewall:all2all:ACCEPT:IN=eth1 OUT= MAC=00:14:85:ac:e5:ee:00:0f:e2:3e:23:99:08:00 SRC=219.65.161.252 DST=202.53.13.170 LEN=141 TOS=0x00 PREC=0x00 TTL=116 ID=16495 PROTO=UDP SPT=1701 DPT=1701 LEN=121
Jan 31 21:48:44 firewall kernel: Shorewall:lan2wan:ACCEPT:IN=eth0 OUT=eth1 SRC=192.168.1.33 DST=219.65.161.252 LEN=275 TOS=0x0
0 PREC=0x00 TTL=127 ID=60622 PROTO=UDP SPT=137 DPT=137 LEN=255
Jan 31 23:01:50 firewall kernel: Shorewall:all2all:ACCEPT:IN=eth1 OUT= MAC=00:14:85:ac:e5:ee:00:0f:e2:3e:23:99:08:00 SRC=219.65.161.252 DST=202.53.13.170 LEN=141 TOS=0x00 PREC=0x00 TTL=116 ID=16530 PROTO=UDP SPT=1701 DPT=1701 LEN=121
Jan 31 21:54:16 firewall kernel: Shorewall:wan2allROP:IN=eth1 OUT= MAC=00:14:85:ac:e5:ee:00:0f:e2:3e:23:99:08:00 SRC=219.65.
161.252 DST=202.53.13.170 LEN=141 TOS=0x00 PREC=0x00 TTL=116 ID=62419 PROTO=UDP SPT=1701 DPT=1701 LEN=121
Jan 31 23:02:39 firewall kernel: Shorewall:all2all:ACCEPT:IN=eth1 OUT= MAC=00:14:85:ac:e5:ee:00:0f:e2:3e:23:99:08:00 SRC=219.65.161.252 DST=202.53.13.170 LEN=141 TOS=0x00 PREC=0x00 TTL=116 ID=16618 PROTO=UDP SPT=1701 DPT=1701 LEN=121
Jan 31 23:02:49 firewall kernel: Shorewall:all2all:ACCEPT:IN=eth1 OUT= MAC=00:14:85:ac:e5:ee:00:0f:e2:3e:23:99:08:00 SRC=219.65.161.252 DST=202.53.13.170 LEN=48 TOS=0x00 PREC=0x00 TTL=116 ID=16659 DF PROTO=TCP SPT=2550 DPT=1723 WINDOW=16384 RES=0x00 SYN URGP=0
Jan 31 23:02:50 firewall kernel: Shorewall:all2all:ACCEPT:IN=eth1 OUT= MAC=00:14:85:ac:e5:ee:00:0f:e2:3e:23:99:08:00 SRC=219.65.161.252 DST=202.53.13.170 LEN=48 TOS=0x00 PREC=0x00 TTL=116 ID=16663 DF PROTO=TCP SPT=2550 DPT=1723 WINDOW=16384 RES=0x00 SYN URGP=0
Jan 31 23:02:50 firewall kernel: Shorewall:all2all:ACCEPT:IN=eth1 OUT= MAC=00:14:85:ac:e5:ee:00:0f:e2:3e:23:99:08:00 SRC=219.65.161.252 DST=202.53.13.170 LEN=48 TOS=0x00 PREC=0x00 TTL=116 ID=16665 DF PROTO=TCP SPT=2550 DPT=1723 WINDOW=16384 RES=0x00 SYN URGP=0
Jan 31 23:04:30 firewall kernel: Shorewall:fw2wan:ACCEPT:IN= OUT=eth1 SRC=202.53.13.170 DST=67.15.187.219 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=58025 DF PROTO=TCP SPT=52993 DPT=80 WINDOW=5840 RES=0x00 SYN URGP=0
Jan 31 23:04:30 firewall kernel: Shorewall:fw2wan:ACCEPT:IN= OUT=eth1 SRC=202.53.13.170 DST=67.15.187.219 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=63330 DF PROTO=TCP SPT=52994 DPT=80 WINDOW=5840 RES=0x00 SYN URGP=0

Eventhough I have configured as directed above some or the other policy is making me drop packets on firewall..

Any help suggested is highly helpfull . I have tried directly port forwarding the port 1723 also.. but no use .. its connecting but packets are not going out of the network..

Thank you
Mahen
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
VPN passthrough on Shorewall antidelldude Linux - Networking 0 07-16-2006 12:55 AM
SHOREWALL Firewall Routing Problem cccc Linux - Security 8 03-07-2006 01:50 PM
Shorewall Routing Internet access issues Raidmax Linux - Newbie 0 11-15-2005 07:29 PM
multiple outbound vpn shorewall kernel 2.6 mcslug Linux - Networking 0 09-01-2005 02:47 PM
VPN Remote Access to the Network saavik Linux - Networking 4 01-21-2003 08:27 PM

LinuxQuestions.org > Forums > Non-*NIX Forums > General

All times are GMT -5. The time now is 06:04 AM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration