Hi, I settted up a vpn between "road warriors laptop" and my firewall. I would like the machines behind the firewall (LAN) being able to access the "road warrior laptop" but this has not worked. Any idea ? Here is what is working : The laptop is able to connect to the firewall vpn through the web . From the firewall I am able to access the laptop. From the lan behind the firewall I am NOT able to access the laptop My vpn is on tunnel 10.8.0.x My lan is on subnet 192.168.1.0 my remote laptop has got a local subnet 192.168.2.0 Best Regards steph ------------------------------------------------------- SF.Net email is Sponsored by the Better Software Conference & EXPO September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf
----- Original Message ----- From: "S. ancelot" <sancelot@free.fr> To: <shorewall-users@lists.sourceforge.net> Sent: Monday, August 08, 2005 04:34 Subject: [Shorewall-users] Openvpn + shorewall + road warrior laptop> Hi, > I settted up a vpn between "road warriors laptop" and my firewall. > > > I would like the machines behind the firewall (LAN) being able to > access the "road warrior laptop" but this has not worked. > > Any idea ? >Not without seeing the information requested from: http://www.shorewall.net/support.html Jerry ------------------------------------------------------- SF.Net email is Sponsored by the Better Software Conference & EXPO September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf
First, can the road warrior ping or otherwise access the machines on your internal LAN? If not, have you added the VPN interface to the loc zone? Traffic will not route between the VPN and the LAN unless both interfaces are in the same zone. Often times the VPN interface is ppp0 or something similar. ________________________________________ Chip Burke ________________________________________ -----Original Message----- From: shorewall-users-admin@lists.sourceforge.net [mailto:shorewall-users-admin@lists.sourceforge.net] On Behalf Of S. ancelot Sent: Monday, August 08, 2005 11:39 AM To: shorewall-users@lists.sourceforge.net Subject: Re: [Shorewall-users] Openvpn + shorewall + road warrior laptop+status Jerry Vonau wrote:>----- Original Message ----- >From: "S. ancelot" <sancelot@free.fr> >To: <shorewall-users@lists.sourceforge.net> >Sent: Monday, August 08, 2005 04:34 >Subject: [Shorewall-users] Openvpn + shorewall + road warrior laptop > > > > >>Hi, >>I settted up a vpn between "road warriors laptop" and my firewall. >> >> >>I would like the machines behind the firewall (LAN) being able to >>access the "road warrior laptop" but this has not worked. >> >>Any idea ? >> >> >> >Not without seeing the information requested from: >http://www.shorewall.net/support.html > >Jerry > > > >------------------------------------------------------- >SF.Net email is Sponsored by the Better Software Conference & EXPO >September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices >Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA >Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf >_______________________________________________ >Shorewall-users mailing list >Shorewall-users@lists.sourceforge.net >https://lists.sourceforge.net/lists/listinfo/shorewall-users > > > >------------------------------------------------------- SF.Net email is Sponsored by the Better Software Conference & EXPO September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf
Why would you add the vpn interface to the loc zone. When I setup OpenVPN, I created a new zone called vpn which I then setup rules allowing the zones to communicate. Steph. Can you ping the laptop''s IP address. If you are trying to access the laptop''s name it could be a DNS issue. Regards Ray Chip Burke wrote:> First, can the road warrior ping or otherwise access the machines on your > internal LAN? If not, have you added the VPN interface to the loc zone? > Traffic will not route between the VPN and the LAN unless both interfaces > are in the same zone. Often times the VPN interface is ppp0 or something > similar. > > ________________________________________ > Chip Burke > ________________________________________ > > > -----Original Message----- > From: shorewall-users-admin@lists.sourceforge.net > [mailto:shorewall-users-admin@lists.sourceforge.net] On Behalf Of S. ancelot > Sent: Monday, August 08, 2005 11:39 AM > To: shorewall-users@lists.sourceforge.net > Subject: Re: [Shorewall-users] Openvpn + shorewall + road warrior > laptop+status > > > > Jerry Vonau wrote: > > >>----- Original Message ----- >>From: "S. ancelot" <sancelot@free.fr> >>To: <shorewall-users@lists.sourceforge.net> >>Sent: Monday, August 08, 2005 04:34 >>Subject: [Shorewall-users] Openvpn + shorewall + road warrior laptop >> >> >> >> >> >>>Hi, >>>I settted up a vpn between "road warriors laptop" and my firewall. >>> >>> >>>I would like the machines behind the firewall (LAN) being able to >>>access the "road warrior laptop" but this has not worked. >>> >>>Any idea ? >>> >>> >>> >> >>Not without seeing the information requested from: >>http://www.shorewall.net/support.html >> >>Jerry >> >> >> >>------------------------------------------------------- >>SF.Net email is Sponsored by the Better Software Conference & EXPO >>September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices >>Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA >>Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf >>_______________________________________________ >>Shorewall-users mailing list >>Shorewall-users@lists.sourceforge.net >>https://lists.sourceforge.net/lists/listinfo/shorewall-users >> >> >> >> > > > > > > ------------------------------------------------------- > SF.Net email is Sponsored by the Better Software Conference & EXPO > September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices > Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA > Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf > _______________________________________________ > Shorewall-users mailing list > Shorewall-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/shorewall-users------------------------------------------------------- SF.Net email is Sponsored by the Better Software Conference & EXPO September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf
My thought is that if they wanted an "all" traffic rule sort of setup. Is there an inherent security downfall to this other than the obvious? ________________________________________ Chip Burke ________________________________________ -----Original Message----- From: shorewall-users-admin@lists.sourceforge.net [mailto:shorewall-users-admin@lists.sourceforge.net] On Behalf Of Ray Booysen Sent: Monday, August 08, 2005 10:15 AM To: shorewall-users@lists.sourceforge.net Subject: Re: [Shorewall-users] Openvpn + shorewall + road warrior laptop+status Why would you add the vpn interface to the loc zone. When I setup OpenVPN, I created a new zone called vpn which I then setup rules allowing the zones to communicate. Steph. Can you ping the laptop''s IP address. If you are trying to access the laptop''s name it could be a DNS issue. Regards Ray Chip Burke wrote:> First, can the road warrior ping or otherwise access the machines on your > internal LAN? If not, have you added the VPN interface to the loc zone? > Traffic will not route between the VPN and the LAN unless both interfaces > are in the same zone. Often times the VPN interface is ppp0 or something > similar. > > ________________________________________ > Chip Burke > ________________________________________ > > > -----Original Message----- > From: shorewall-users-admin@lists.sourceforge.net > [mailto:shorewall-users-admin@lists.sourceforge.net] On Behalf Of S.ancelot> Sent: Monday, August 08, 2005 11:39 AM > To: shorewall-users@lists.sourceforge.net > Subject: Re: [Shorewall-users] Openvpn + shorewall + road warrior > laptop+status > > > > Jerry Vonau wrote: > > >>----- Original Message ----- >>From: "S. ancelot" <sancelot@free.fr> >>To: <shorewall-users@lists.sourceforge.net> >>Sent: Monday, August 08, 2005 04:34 >>Subject: [Shorewall-users] Openvpn + shorewall + road warrior laptop >> >> >> >> >> >>>Hi, >>>I settted up a vpn between "road warriors laptop" and my firewall. >>> >>> >>>I would like the machines behind the firewall (LAN) being able to >>>access the "road warrior laptop" but this has not worked. >>> >>>Any idea ? >>> >>> >>> >> >>Not without seeing the information requested from: >>http://www.shorewall.net/support.html >> >>Jerry >> >> >> >>------------------------------------------------------- >>SF.Net email is Sponsored by the Better Software Conference & EXPO >>September 19-22, 2005 * San Francisco, CA * Development LifecyclePractices>>Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA >>Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf >>_______________________________________________ >>Shorewall-users mailing list >>Shorewall-users@lists.sourceforge.net >>https://lists.sourceforge.net/lists/listinfo/shorewall-users >> >> >> >> > > > > > > ------------------------------------------------------- > SF.Net email is Sponsored by the Better Software Conference & EXPO > September 19-22, 2005 * San Francisco, CA * Development LifecyclePractices> Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA > Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf > _______________________________________________ > Shorewall-users mailing list > Shorewall-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/shorewall-users------------------------------------------------------- SF.Net email is Sponsored by the Better Software Conference & EXPO September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users ------------------------------------------------------- SF.Net email is Sponsored by the Better Software Conference & EXPO September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf
Hi Chip Not neccesarily in my experience but if you want to tighten the security of the vpn zone so that the road-warrior can only access certain facilities its easier than having the interface in the loc zone. My shorewall setup at the moment has an all traffic rule however, that needs to be changed :P Regards Ray Chip Burke wrote:> My thought is that if they wanted an "all" traffic rule sort of setup. Is > there an inherent security downfall to this other than the obvious? > > ________________________________________ > Chip Burke > ________________________________________ > > > -----Original Message----- > From: shorewall-users-admin@lists.sourceforge.net > [mailto:shorewall-users-admin@lists.sourceforge.net] On Behalf Of Ray > Booysen > Sent: Monday, August 08, 2005 10:15 AM > To: shorewall-users@lists.sourceforge.net > Subject: Re: [Shorewall-users] Openvpn + shorewall + road warrior > laptop+status > > Why would you add the vpn interface to the loc zone. When I setup > OpenVPN, I created a new zone called vpn which I then setup rules > allowing the zones to communicate. > > Steph. Can you ping the laptop''s IP address. If you are trying to > access the laptop''s name it could be a DNS issue. > > Regards > Ray > > Chip Burke wrote: > >>First, can the road warrior ping or otherwise access the machines on your >>internal LAN? If not, have you added the VPN interface to the loc zone? >>Traffic will not route between the VPN and the LAN unless both interfaces >>are in the same zone. Often times the VPN interface is ppp0 or something >>similar. >> >>________________________________________ >>Chip Burke >>________________________________________ >> >> >>-----Original Message----- >>From: shorewall-users-admin@lists.sourceforge.net >>[mailto:shorewall-users-admin@lists.sourceforge.net] On Behalf Of S. > > ancelot > >>Sent: Monday, August 08, 2005 11:39 AM >>To: shorewall-users@lists.sourceforge.net >>Subject: Re: [Shorewall-users] Openvpn + shorewall + road warrior >>laptop+status >> >> >> >>Jerry Vonau wrote: >> >> >> >>>----- Original Message ----- >>>From: "S. ancelot" <sancelot@free.fr> >>>To: <shorewall-users@lists.sourceforge.net> >>>Sent: Monday, August 08, 2005 04:34 >>>Subject: [Shorewall-users] Openvpn + shorewall + road warrior laptop >>> >>> >>> >>> >>> >>> >>>>Hi, >>>>I settted up a vpn between "road warriors laptop" and my firewall. >>>> >>>> >>>>I would like the machines behind the firewall (LAN) being able to >>>>access the "road warrior laptop" but this has not worked. >>>> >>>>Any idea ? >>>> >>>> >>>> >>> >>>Not without seeing the information requested from: >>>http://www.shorewall.net/support.html >>> >>>Jerry >>> >>> >>> >>>------------------------------------------------------- >>>SF.Net email is Sponsored by the Better Software Conference & EXPO >>>September 19-22, 2005 * San Francisco, CA * Development Lifecycle > > Practices > >>>Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA >>>Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf >>>_______________________________________________ >>>Shorewall-users mailing list >>>Shorewall-users@lists.sourceforge.net >>>https://lists.sourceforge.net/lists/listinfo/shorewall-users >>> >>> >>> >>> >> >> >> >> >> >>------------------------------------------------------- >>SF.Net email is Sponsored by the Better Software Conference & EXPO >>September 19-22, 2005 * San Francisco, CA * Development Lifecycle > > Practices > >>Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA >>Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf >>_______________________________________________ >>Shorewall-users mailing list >>Shorewall-users@lists.sourceforge.net >>https://lists.sourceforge.net/lists/listinfo/shorewall-users > > > > > ------------------------------------------------------- > SF.Net email is Sponsored by the Better Software Conference & EXPO > September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices > Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA > Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf > _______________________________________________ > Shorewall-users mailing list > Shorewall-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/shorewall-users > > > > > ------------------------------------------------------- > SF.Net email is Sponsored by the Better Software Conference & EXPO > September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices > Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA > Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf > _______________________________________________ > Shorewall-users mailing list > Shorewall-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/shorewall-users------------------------------------------------------- SF.Net email is Sponsored by the Better Software Conference & EXPO September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf
Got ya. So there are two choices.... Make a separate VPN zone and add the VPN interface to it. Then you then will need to allow traffic between the VPN and loc zone. This allows more restrictive policies if you only want to allow certain traffic. Or add the VPN interface to the loc zone, but beware all traffic will be allowed between the VPN and the loc zone unless to restrict by IP some other way which is a pain for anything more than a host or two. If you are worried about a password being racked on a VPN client, maybe a separate zone with restricted rules is best to minimize the damage should a breech occur. ________________________________________ Chip Burke ________________________________________ -----Original Message----- From: shorewall-users-admin@lists.sourceforge.net [mailto:shorewall-users-admin@lists.sourceforge.net] On Behalf Of Ray Booysen Sent: Monday, August 08, 2005 10:25 AM To: shorewall-users@lists.sourceforge.net Subject: Re: [Shorewall-users] Openvpn + shorewall + road warrior laptop+status Hi Chip Not neccesarily in my experience but if you want to tighten the security of the vpn zone so that the road-warrior can only access certain facilities its easier than having the interface in the loc zone. My shorewall setup at the moment has an all traffic rule however, that needs to be changed :P Regards Ray Chip Burke wrote:> My thought is that if they wanted an "all" traffic rule sort of setup. Is > there an inherent security downfall to this other than the obvious? > > ________________________________________ > Chip Burke > ________________________________________ > > > -----Original Message----- > From: shorewall-users-admin@lists.sourceforge.net > [mailto:shorewall-users-admin@lists.sourceforge.net] On Behalf Of Ray > Booysen > Sent: Monday, August 08, 2005 10:15 AM > To: shorewall-users@lists.sourceforge.net > Subject: Re: [Shorewall-users] Openvpn + shorewall + road warrior > laptop+status > > Why would you add the vpn interface to the loc zone. When I setup > OpenVPN, I created a new zone called vpn which I then setup rules > allowing the zones to communicate. > > Steph. Can you ping the laptop''s IP address. If you are trying to > access the laptop''s name it could be a DNS issue. > > Regards > Ray > > Chip Burke wrote: > >>First, can the road warrior ping or otherwise access the machines on your >>internal LAN? If not, have you added the VPN interface to the loc zone? >>Traffic will not route between the VPN and the LAN unless both interfaces >>are in the same zone. Often times the VPN interface is ppp0 or something >>similar. >> >>________________________________________ >>Chip Burke >>________________________________________ >> >> >>-----Original Message----- >>From: shorewall-users-admin@lists.sourceforge.net >>[mailto:shorewall-users-admin@lists.sourceforge.net] On Behalf Of S. > > ancelot > >>Sent: Monday, August 08, 2005 11:39 AM >>To: shorewall-users@lists.sourceforge.net >>Subject: Re: [Shorewall-users] Openvpn + shorewall + road warrior >>laptop+status >> >> >> >>Jerry Vonau wrote: >> >> >> >>>----- Original Message ----- >>>From: "S. ancelot" <sancelot@free.fr> >>>To: <shorewall-users@lists.sourceforge.net> >>>Sent: Monday, August 08, 2005 04:34 >>>Subject: [Shorewall-users] Openvpn + shorewall + road warrior laptop >>> >>> >>> >>> >>> >>> >>>>Hi, >>>>I settted up a vpn between "road warriors laptop" and my firewall. >>>> >>>> >>>>I would like the machines behind the firewall (LAN) being able to >>>>access the "road warrior laptop" but this has not worked. >>>> >>>>Any idea ? >>>> >>>> >>>> >>> >>>Not without seeing the information requested from: >>>http://www.shorewall.net/support.html >>> >>>Jerry >>> >>> >>> >>>------------------------------------------------------- >>>SF.Net email is Sponsored by the Better Software Conference & EXPO >>>September 19-22, 2005 * San Francisco, CA * Development Lifecycle > > Practices > >>>Agile & Plan-Driven Development * Managing Projects & Teams * Testing &QA>>>Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf >>>_______________________________________________ >>>Shorewall-users mailing list >>>Shorewall-users@lists.sourceforge.net >>>https://lists.sourceforge.net/lists/listinfo/shorewall-users >>> >>> >>> >>> >> >> >> >> >> >>------------------------------------------------------- >>SF.Net email is Sponsored by the Better Software Conference & EXPO >>September 19-22, 2005 * San Francisco, CA * Development Lifecycle > > Practices > >>Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA >>Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf >>_______________________________________________ >>Shorewall-users mailing list >>Shorewall-users@lists.sourceforge.net >>https://lists.sourceforge.net/lists/listinfo/shorewall-users > > > > > ------------------------------------------------------- > SF.Net email is Sponsored by the Better Software Conference & EXPO > September 19-22, 2005 * San Francisco, CA * Development LifecyclePractices> Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA > Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf > _______________________________________________ > Shorewall-users mailing list > Shorewall-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/shorewall-users > > > > > ------------------------------------------------------- > SF.Net email is Sponsored by the Better Software Conference & EXPO > September 19-22, 2005 * San Francisco, CA * Development LifecyclePractices> Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA > Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf > _______________________________________________ > Shorewall-users mailing list > Shorewall-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/shorewall-users------------------------------------------------------- SF.Net email is Sponsored by the Better Software Conference & EXPO September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users ------------------------------------------------------- SF.Net email is Sponsored by the Better Software Conference & EXPO September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf
S. ancelot wrote:> Hi, > I settted up a vpn between "road warriors laptop" and my firewall. > > > I would like the machines behind the firewall (LAN) being able to > access the "road warrior laptop" but this has not worked. > > Any idea ? > > Here is what is working : > The laptop is able to connect to the firewall vpn through the web . > From the firewall I am able to access the laptop. > > From the lan behind the firewall I am NOT able to access the laptop > > My vpn is on tunnel 10.8.0.x > My lan is on subnet 192.168.1.0 > my remote laptop has got a local subnet 192.168.2.0 > >Does the remote laptop have a route to 192.168.1.0/24 through the VPN tunnel? -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
Jerry Vonau wrote:>----- Original Message ----- >From: "S. ancelot" <sancelot@free.fr> >To: <shorewall-users@lists.sourceforge.net> >Sent: Monday, August 08, 2005 04:34 >Subject: [Shorewall-users] Openvpn + shorewall + road warrior laptop > > > > >>Hi, >>I settted up a vpn between "road warriors laptop" and my firewall. >> >> >>I would like the machines behind the firewall (LAN) being able to >>access the "road warrior laptop" but this has not worked. >> >>Any idea ? >> >> >> >Not without seeing the information requested from: >http://www.shorewall.net/support.html > >Jerry > > > >------------------------------------------------------- >SF.Net email is Sponsored by the Better Software Conference & EXPO >September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices >Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA >Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf >_______________________________________________ >Shorewall-users mailing list >Shorewall-users@lists.sourceforge.net >https://lists.sourceforge.net/lists/listinfo/shorewall-users > > > >
S. ancelot
2005-Aug-09 10:24 UTC
Re: Openvpn + shorewall + road warrior laptop+status[SOLVED]
Hi, This is solved : There was missing a route to my local netwrok from the laptop! Thanks!! Chip Burke wrote:>First, can the road warrior ping or otherwise access the machines on your >internal LAN? If not, have you added the VPN interface to the loc zone? >Traffic will not route between the VPN and the LAN unless both interfaces >are in the same zone. Often times the VPN interface is ppp0 or something >similar. > >________________________________________ >Chip Burke >________________________________________ > > >-----Original Message----- >From: shorewall-users-admin@lists.sourceforge.net >[mailto:shorewall-users-admin@lists.sourceforge.net] On Behalf Of S. ancelot >Sent: Monday, August 08, 2005 11:39 AM >To: shorewall-users@lists.sourceforge.net >Subject: Re: [Shorewall-users] Openvpn + shorewall + road warrior >laptop+status > > > >Jerry Vonau wrote: > > > >>----- Original Message ----- >>From: "S. ancelot" <sancelot@free.fr> >>To: <shorewall-users@lists.sourceforge.net> >>Sent: Monday, August 08, 2005 04:34 >>Subject: [Shorewall-users] Openvpn + shorewall + road warrior laptop >> >> >> >> >> >> >>>Hi, >>>I settted up a vpn between "road warriors laptop" and my firewall. >>> >>> >>>I would like the machines behind the firewall (LAN) being able to >>>access the "road warrior laptop" but this has not worked. >>> >>>Any idea ? >>> >>> >>> >>> >>> >>Not without seeing the information requested from: >>http://www.shorewall.net/support.html >> >>Jerry >> >> >> >>------------------------------------------------------- >>SF.Net email is Sponsored by the Better Software Conference & EXPO >>September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices >>Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA >>Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf >>_______________________________________________ >>Shorewall-users mailing list >>Shorewall-users@lists.sourceforge.net >>https://lists.sourceforge.net/lists/listinfo/shorewall-users >> >> >> >> >> >> > > > > >------------------------------------------------------- >SF.Net email is Sponsored by the Better Software Conference & EXPO >September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices >Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA >Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf >_______________________________________________ >Shorewall-users mailing list >Shorewall-users@lists.sourceforge.net >https://lists.sourceforge.net/lists/listinfo/shorewall-users > > > >------------------------------------------------------- SF.Net email is Sponsored by the Better Software Conference & EXPO September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf