search for: vpn3

...it is working through the rules file before prompting for login. Any ideas?? TIA, Rick The shorewall zones file is net NET Internet loc Local Local Networks vpn1 VPN-ipsec RoadWarrior bpn3 WLAN-openvpn openvpn The interfaces file is net eth0 detect norfc1918 loc eth1 detect dhcp vpn1 ipsec0 vpn3 tun0 The tunnels file is ipsec net 0.0.0.0/0 vpn1 generic:udp:5000 loc 192.168.1.0/24 vpn3 firewall: -root- # more policy # # Shorewall 1.4 -- Sample Policy File For Two Interfaces ### #SOURCE DEST POLICY LOG LEVEL LIMIT:BURST loc net A...

...-----> <------------------ tun0 ----------> 10.1.1.2 10.1.1.1 10.1.10.1 10.1.10.2 route 216.x.y.z route 192.168.10.0/24 route 192.168.1.0/24 Why does nothing work for tun0? TIA Rick The following policies are in place on officefw: fw vpn3 ACCEPT loc vpn3 ACCEPT net vpn3 ACCEPT vpn1 loc ACCEPT vpn3 loc ACCEPT vpn3 net ACCEPT vpn3 fw ACCEPT where tunnels entry is openvpn:50001...

...ifconfig eth0 209.159.32.162 netmask 255.255.255.0 up ifconfig eth0:1 209.159.32.163 netmask 255.255.255.0 up that sets up the network card to have 2 address well in shorewall i tried to add eth0:1 to my interfaces well it says that Determining Zones... Zones: inet inet2 loc cust vpn1 vpn2 vpn3 Validating interfaces file... Error: Invalid Interface Name: eth0:1 what am i doing wrong or what do i need to do? Marshal McInnis Tech / Web Designs 1-205-344-4455 Ext 208

I have a firewall running Shorewall 1.3.13-1 from rpm on a redhat 7.3 box. The box has three nics assigned to zones loc net and dmz. We also have multiple vpn links accomplished via ssh tunnels, These links all come from dynamic IP addresses with known private subnets behind them. There are basically two types of networks these vpns connect, one with access to almost everything and one with

...aces such as vpn1 it works. But if I enter the vpn in the hosts file shorewall blocks the vpns. shorewall/hosts #ZONE HOST(S) OPTIONS loc eth1:192.168.25.0/24 loctw eth1:192.168.50.0/24 locsa eth1:192.168.75.0/24 vpntw ppp+:!192.168.50.0/24 vpnsa ppp+:!192.168.75.0/24 #vpn3 ppp+:!192.168.3.0/24 interfaces net eth0 detect routefilter,norfc1918,tcpflags - eth1 192.168.25.255,192.168.50.255,192.168.75.255 - ppp+ now if I comment out vpnsa in hosts and enter vpnsa in interfaces it works (meaning the tunnel can talk :). I can not figure out what the troubl...

Hi, I am new to VPN an OpenVPN with shorewal. I tryed a lot and read a bounch of howto''s but nothing helped so I came here. I want to tunnel all request to my server 141.48.XXX.XXX from my home network throu port 443. I want to do this because this is the only way I can connect to my server using ssh or ony other tool or port. On Port 80 Apache is running, so I only have the https port

...have testing with two networks. This trouble has to do with the hosts file. #ZONE HOST(S) OPTIONS loctw eth1:192.168.50.0/24 loctw ppp+:!192.168.50.0/24 locsa eth1:192.168.75.0/24 locsa ppp+:!192.168.75.0/24 loc eth1:192.168.25.0/24 #vpn3 ppp+:192.168.3.0/24 I can get through only one tunnel at a time. If I remove the explanation mark tunnel loctw I can then get tunnel locsa working and vs vrs if I remove the explanation mark from locsa and put back explation mark in loctw I can then get tunnel loctw working. And I have...

Hello again, >From the point of view of a Red Hat *user*, the standardised way of doing things would be to have an /etc/sysconfig/tinc file containing something like: NETWORKS="vpn1 vpn2 vpn3" (one or more names separated by spaces) At initialization, each name should launch a separate tinc instance (a different VPN) tinc service should not start until the user adds at least one VPN name (say "vpn1") in the /etc/sysconfig/tinc and the corresponding /etc/tinc/vpn1 dir...

Hello to everybody, We want integrate in a router/firewall (Debian Based, 2.6 Kernel), an HTB shaper. The goal is to divide the traffic for classes of workstations, at example in three classes, let say A, B and C. Example: A 70 Mb/s B 20 Mb/s C 10 Mb/s If B don''t make traffic, 7/8 of 20Mb/s must be assigned to A and all the rest at B We have used CBQ and HTB, with poor succes. Anybody

...# LapTop. # # ipsec net 0.0.0.0/0 gw # # Example 3: # # Host 4.33.99.124 is a standalone system connected # via an ipsec tunnel to the firewall system. The host # is in zone gw. # # ipsec net 4.33.99.124 gw # # Example 4: # # Road Warriors that may belong to zones vpn1, vpn2 or # vpn3. The FreeS/Wan _updown script will add the # host to the appropriate zone using the "shorewall add" # command on connect and will remove the host from the # zone at disconnect time. # # ipsec net 0.0.0.0/0 vpn1,vpn2,vpn3 # # Example 5: # # You run the Linux PPTP client on your...