LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
Reload this Page Shorewall vpn settings
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 06-25-2013, 04:20 PM   #1
rcrosoer
Member
 
Registered: Oct 2005
Distribution: SuSe
Posts: 41

Rep: Reputation: 15
Shorewall vpn settings

I'm trying to set up a Raspberry Pi with Debian Squeeze as a VPN server using PPTPD and Shorewall.

The servers public ip is natted by a router to 192.168.10.12, the gateway is 192.168.10.1 the vpn remote ip is 192.168.100.96-103

PPTPD ran ok before Shorewall was installed.

the Shorewall settings are:
Code:
Interfaces

#ZONE	INTERFACE		OPTIONS
net	eth0	dhcp,tcpflags,logmartians,nosmurfs,sourceroute=0
-	ppp+


************************
Policy

#SOURCE		DEST		POLICY			LOG LEVEL		LIMIT:BURST
$FW		net		ACCEPT
$FW		vpn		ACCEPT
vpn		$FW		ACCEPT
net		all		DROP			info
# THE FOLLOWING POLICY MUST BE LAST
all		all		REJECT			info

******************************
Rules

#ACTION		SOURCE		DEST	PROTO	DEST	SOURCE		ORIGINAL		RATE	USER/		MARK		CONNLIMIT		TIME		HEADERS	SWITCH
#		                                PORT    PORT(s)		DEST			LIMIT	GROUP
#SECTION ALL
#SECTION ESTABLISHED
#SECTION RELATED
SECTION NEW

# Drop Ping from the "bad" net sone and prevent your log from being flooded.

PING(DROP)	net		$FW

# Permit all ICMP traffic FROM the firewall TO the net zone.

ACCEPT		$FW		net	icmp
ACCEPT		net		$FW	icmp	8
ACCEPT		net		$FW	tcp	1723
SSH(ACCEPT)	net		$FW			

*****************************
Tunnels

#TYPE		ZONE		GATEWAY			GATEWAY
#							ZONE
pptpserver	vpn		192.168.10.12


******************************
Zones

#ZONE		TYPE		OPTIONS		IN	OUT
#						OPTIONS	OPTIONS
fw		firewall
net		ipv4
vpn		ipv4

******************************
Hosts

#ZONE		HOST(S)			OPTIONS
#
vpn		ppp+:192.168.10.0/24
shorewell check shows no errors

I hope this is enough to go on.

Can anybody see what's missing or wrong.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
VPN settings Brianret Linux - Wireless Networking 1 08-04-2011 03:33 AM
Trying to configure shorewall to allow bridged vpn traffic to the local subnet perlchun Linux - Networking 4 06-25-2008 09:13 PM
regd VPN (Shorewall + Routing and remote access) nolinuxnollife General 0 01-31-2008 11:46 AM
VPN passthrough on Shorewall antidelldude Linux - Networking 0 07-16-2006 12:55 AM
multiple outbound vpn shorewall kernel 2.6 mcslug Linux - Networking 0 09-01-2005 02:47 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 07:46 AM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration