similar to: OpenVPN setup

net dmz:192.168.0.1 tcp 80 I forgot to mention that this should be put to rules file, sorry. _____ Von: Michael Weickel - iQom Business Services GmbH [mailto:mw@iqom.de] Gesendet: Dienstag, 2. Februar 2010 17:37 An: ''Shorewall Users'' Betreff: AW: [Shorewall-users] Suddenly DMZ can''t access to internet No. For

Hello We are using old version ( shorewall-3.0.7-1) with Centos 5.3 The shorewall has three zones (net / loc / dmz). Loc can access to internet with no problem and can access to DMZ. DMZ can''t access to internet. Net can''t access to DMZ with NAT. I tried to restart the machine / check Lan card / check cable , they were work find. Is it DMZ Lan card problem? but it can

Hi, I have a client behind shorewall which has 2 IP: 192.168.8.35 is the real IP and 192.168.8.37 is the virtual IP. I have added DNAT rules into shorewall: DNAT net loc:192.168.8.35 tcp 11008 - 1.2.3.4 DNAT net loc:192.168.8.37 tcp 55000 - 1.2.3.5 1.2.3.4 and 1.2.3.5 is virtual IP

------------------------------------------------------------------------------ The Planet: dedicated and managed hosting, cloud storage, colocation Stay online with enterprise data centers and the best network in the business Choose flexible plans and management services without long-term contracts Personal 24x7 support from experience hosting pros just a phone call away.

I have a working LVS-Setup on CentOS 5.4 with the following settings in sysctl.conf: net.ipv4.conf.lo.arp_ignore = 1 net.ipv4.conf.lo.arp_announce = 2 net.ipv4.conf.all.arp_ignore = 1 net.ipv4.conf.all.arp_announce = 2 Now I''d like to use shorewall, but after activating it, shorewall changes both arp_ignore values to 0. I just found out how to set arp_ignore for separate interfaces, but

Hi, I''m running Slackware 13.37 x86 using Shorewall 4.4.21 with OpenVPN and the VPN options I''m using in Slackware 13.37 will not work in Shorewall, but in Slackware 13.1 using the same Shorewall version and files, the ''interfaces'', ''policy'' and ''zone'', are all I have configured, it was working and this also works in Arch at

I am interested in opinions regarding the use of xinetd versus the use of tcp wrappers. The two programs have similar functionality, but I find xinetd suits my needs better. The biggest problem is the age of xinetd, and AFAIK it is no longer being kept up. Are there any known security issues with xinetd? Another issue is that xinetd makes use of a non-standard inetd.conf layout, but

[This email is either empty or too large to be displayed at this time]

Hello list, Please don''t shoot me. I know I''m doing something with bonding that bonding wasn''t made for. I just want to give it a try. I want a simple mechanism to have a failover on a 24Mbit line to a 2Mbit line in case the 24Mbit line goes down. Between A and B there are two lines: a 24Mbit and a 2Mbit. I use two OpenVPN tunnels with tap devices: +-- tap0 (A)---

Hello, I have the need to connect 2 remote site with vpn, the windows pc of the 2 site it can share the HD and printer. This is my configuration : LOCAL NETWORK A : ip from 192.168.10.2 to 192.168.10.99 | | | | eth0: 192.168.10.1 FIREWALL A : ( with debian ; openvpn ver. 2.0.beta15 ; shorewall ver 2.0.11 ) eth1 : xxx.xxx.xxx.xxx ( pubblic ip address ) | | | | INTERNET | | | eth1 :

Hello all, I subscribed newly to this list, since I got an bridging problem after an upgrade from Debian etch to Debian lenny (before everything worked fine). The situation is as follows: # brctl show bridge name bridge id STP enabled interfaces br0 8000.000347729835 no eth0 tap0 tap0

Here is the scenario: I have one server with kernel 2.4.24 with a bridge br0 made of 2 interfaces, eth0 and tap0 (the last is an OpenVPN tunnel), and one remote computer connetting through tap0. If I assign a static IP to the remote computer, the bridge works perfecly (so I think the problem is not OpenVPN-related). If I start a DHCPd on the server and I configure the remote client to get the

Good day, I have gone through a couple of the HOWTO''s on how to get this to work, but I am still sitting with a very strange (for me) issue. If two clients connect via OpenVPN (bridged), they can access each other without any problems, but neither of them can access the server, nor any system behind it. I am fairly sure it is a Shorewall issue, but I am very new to Shorewall, having

Does anyone know what triggers the 7970 to update its config? I was able to get it to update to SIP, but the config I used initially won't go away. I am making small changes to the SEPxxx.cnf.xml file and rebooting the phone, the phone is downloading the (TFTP) new config file, but I don't see any change on the phone itself. I've looked at the VersionStamp and incremented that, but

I have been delighted by tinc. Building a mesh like I need would have been horrible in OpenVPN. tinc makes it easy. I decided to share a workaround for a problem that's been vexing me. Either I'm being dumb (and can do this better with a hint) or this is something others might need. I've been moving a bunch of services from our university to Amazon (EC2). To do this, I bring

Hello, I have an OpenVPN running on a system with Samba 3.0.9. However, with this setting (tun2 is my VPN device): interfaces = tun2, lo bind interfaces only = Yes it doesn't bind to tun2, but to ppp0. What the heck? Tomek

Hey all, I''m trying to setup roadwarrior connection to my internal network. So I''ve setup openvpn to create a tap0 connection and also have bridged the eth1 (leads to my internal computers 192.168.2.10-30 and tap0 which is the VPN connection. On my shorewall setup I have br0 maped to zone loc and eth0 to be my internet and I have masqing on my br0 to get my internal computers

Hi guys, Now, I''m looking for a method to modify packet headers/contents when they arrive at xen bridges (e.g. xenbr0). For example, I consider a following operation; when a xen bridge recieves a packet(frame), it firstly encrypts the content using a predefined key, and then forwards it to other host/router. Is is possible to add such functionality to the xen bridge ? Any ideas,

I am trying to make the following connection: WindowsXP(OpenVPN-Client)->shorewall->Internet->LinksysWRTG->OpenVPN-Server ...of course the reverse path too. The OpenVPN server is running in bridge mode. When the openVPN client is launched it looks like a successful connection is made. The openVPN client gets assigned an address from the openVPN server pool. The OpenVPN

Code: 1. First establish a VPN. I use a bridged VPN set up with OpenVPN. It works fine. The VPN client created a tap0 interface with the IP 11.0.0.3. 2. Re-route packets for 255.255.255.255 to your VPN interface (Here tap0) # route add host 255.255.255.255 dev tap0 3. In /etc/hosts, remove any reference to your hostname (TACHIBANA here) and, on the first line, add : 11.0.0.3 TACHIBANA 4. Compile