Displaying 20 results from an estimated 2000 matches similar to: "fwmark"
2004 Sep 22
2
IPSEc versus Multipath routing
Firstly I don''t think this is a shorewall problem, but I suspect shorewall
might be able to solve it for me.
I''ve posted this so far at
http://mandrakeusers.org/index.php?showtopic=18942
I''ve stumble upon a problem that has me stumped
I have a multipath router using 2.6.8.1 with patches from here
http://www.ssi.bg/~ja/#routes
basic setup:
___ ISP1
2004 Nov 24
0
(no subject)
Ive got a problem that I have ignored for a month or 3 J
Im almost certain this is not a Shorewall problem, but Ill share it anyway ;)
I have 2 ISP connection, with load balancing.
heres some routing stuff:
rama-kandra root # ip route show
202.37.230.64/26 dev eth2 proto kernel scope link src 202.37.230.93
192.168.1.0/24 dev eth0 proto kernel scope link src 192.168.1.1
2004 Nov 24
1
A haunting problem
I''ve got a problem that I have ignored for a month or 3 :-)
I''m almost certain this is not a Shorewall problem, but I''ll share it anyway
;)
I have 2 ISP connection, with load balancing.
here''s some routing stuff:
rama-kandra root # ip route show
202.37.230.64/26 dev eth2 proto kernel scope link src 202.37.230.93
192.168.1.0/24 dev eth0 proto kernel
2005 Mar 16
3
mark range
(excuse me for my english)
why mark range in tcrules is 1-255 ?
iptables support marks > 255.
Leandro.
2012 May 08
19
Shorewall, TPROXY, Transparent Squid and Multiples ISP
Hello,
I wonder if someone could use the TPROXY with Shorewall and
transparent Squid with using the routing rules on shorewall
(tcrules) for hosts / networks (LAN) with multiples providers (WANs)
directly from the internal network on port 80 (with TPROXY
transparent squid or REDIRECT).
On this issue, the routing rules is not work propertly because the
source is the
2012 Dec 29
10
How could I open Port 1701 for VPN l2tp/ipsec
Hello Mailinglist,
please excuse my bad english - but I am not a native speaker.
My Network looks like this:
Internet --- dyn. IP --- Firewall (shorewall) --- LAN (192.168.X.X)
No I try to connect my iphone (from mobile Internet G3) over VPN
(l2tp/ipsec) with the firewall.
But I can´t open the necessary Port 1701.
/var/log/syslog
...
Dec 30 00:24:29 router kernel: [226128.293757]
2012 Jan 19
5
net2fw:DROP for L2TP VPN
Hi, I am trying to get L2TP roadwarrior VPN working from http://www.shorewall.net/IPSEC-2.6.html#RW-L2TP but i am making a mistake somewhere, appreciate a fresh set of eyes to help. I have the following interfaces: ppp0 - interneteth0 - local networkrem - client openvpnl2tp - ppp for lt2p clients
I am getting the following error logged when trying to connect into the server with L2TP from a remote
2012 Oct 24
1
IPSEC/L2TP Local and External Internet Access at same time through two interfaces?
Hey
First, apologies if this went out twice. I sent the original email from an odd email configuration (essentially from an alias of what I signed up as). I searched and noticed that my post did not appear and I did not get a bounce back so I was confused. I waited a few days before resending. So apologies if this goes out twice. I am not trying to spam.
I was hoping someone could help me with
2004 Dec 03
1
Re: Shorewall-users Digest, Vol 25, Issue 9
> Message: 2
> Date: Fri, 03 Dec 2004 10:10:35 +1300
> From: Paul <lists@loudas.com>
> Subject: [Shorewall-users] another network to add
> To: Shorewall List <shorewall-users@lists.shorewall.net>
> Message-ID: <41AF84CB.5080304@loudas.com>
> Content-Type: text/plain; charset=ISO-8859-1; format=flowed
>
> Hi Tom (and others)
> encase you
2008 Jan 17
16
Local network rejecting traffic
Hello!
I have this situation / interfaces:
Dsl0 - internet interface
Eth0 - local network
I have linux box with shorewall 2.2. And on the local network I also have a
hardware router. I have connected WAN port with settings of my linux box and
then created one more local network behind hardware router. It works fine.
I then wanted to use VPN function of this hardware router, so i created
2005 Jan 14
1
debugging encrypted part of isakmp
Are there any tools to decode encrypted part of isakmp provided that
identities of both peers are known to me and that I am able to observe
the whole exchange ?
--
Andriy Gapon
2015 Sep 17
4
I want to connect to a l2tp server from centos.
I have a server currently connecting to a pptp remote server.
This server(lns\lac) has the option for pptp connections and l2tp
connections.
The l2tp connections are not using ipsec encryption at all.
I have seen couple guides\tutorials on the internet:
-
https://raymii.org/s/tutorials/IPSEC_L2TP_vpn_on_CentOS_-_Red_Hat_Enterprise_Linux_or_Scientific_-_Linux_6.html
-
2005 Jun 06
23
Multi-ISP in 2.4.0
Hello Shorewall list,
I''m a happy Shorewall user since a few years now and everything works fine
for me except one thing that I try to implement since a week, the multi-isp.
I''ve downloaded the 2.4.0 Stable release yesterday and tried the RC2 since a
week.
My config is a Debian running a kernel 2.4.27 home made with the
CONNMARK.diff patch applied
I''m using 2 ISP,
2004 Oct 17
8
Shorewall and IPP2P
Hi!
I''m wondering whether anyone has successfully set up a bandwidth control
system using ipp2p and shorewall. I have been able to drop connecions
altogether, but I don''t seem to be able to get CONNMARK working with ipp2p.
Any pointers would be greatly appreciated :)
______________________________
Mario R. Pizzolanti
2007 Nov 15
2
IPSEC help
Hi,
I am new to ipsec and trying to connect my bsd server with win 2000. I have succeeded to tunnel using pre-shared key. But regarding certificate , I failed to get success.
The following are configuration :
racoon.conf
path certificate "/usr/local/openssl/certs" ;
# "log" specifies logging level. It is followed by either "notify",
2016 Aug 30
5
L2tp and winbind - server role active directory domain controller
Hello list...
I have samba 4.1.17 installed and in the same server, I have l2tp.
Samba it configurated as active directory domain controller.
I am trying authetication against samba with winbind.
I want to know how to restrict authentication for certain group.
I put this line in the end of l2tp conf file:
ntlm_auth-helper '/usr/bin/ntlm_auth --helper-protocol=ntlm-server-1
2003 Oct 21
14
Prioritizing traffic
I don''t know whether this is the right place to ask, but kindly point me to
an FM that I can R if it isn''t.
My wife is creating lots of Kazaa traffic, and I am using rsync to create a
full mirror of Red Hat''s FTP site, Aurora Linux FTP site, the LDP site, and
some other stuff. Clearly, when one is moving well over 100GB over a 128
Kbps link, this is going to take a
2015 Sep 18
2
I want to connect to a l2tp server from centos.
Hey John,
I do not require encryption at all, it's a secure and internal channel
but it requires me to connect via either pptp or l2tp.
This is the reason I am asking.
I had the chance of finding the SoftEther Project which gives a lot in
terms of VPN Client and Server.
At:
http://www.softether-download.com/en.aspx
But yet to try it.
Also they have all sorts of beta versions but not
2003 Sep 18
0
hexadecimal fwmark and fwmark mask
Hi list,
I''m new to this list, I just subscribed because I have some ackward
about IPRoute2.
First, while playing with NetFilter'' "MARK" target, I met a weird
behaviour once I tried to use this marks in the RPDB : the packets
where successfully marked, but it seemed that RPDB didn''t succed in
matching them (for those who already know the answer, I only used
2005 May 17
1
Support for inbound traffic from multiple ISPs in CVS
The Shorewall2/ project in CVS contains my initial attempt to establish
correct routing for traffic forwarded from two different ISPs to
internal servers.
>From the release notes:
Shorewall 2.3.2 includes support for multiple Internet interfaces to
different ISPs. This feature is enabled by setting the "default"
option for each Internet interface in