similar to: Bluetooth, palm, ppp and shorewall

I am trying shorewall as my previous post With alisias on eth1 loc and 4 pptp client vpns. The odd thing is when I enter one of the vpns in interfaces such as vpn1 it works. But if I enter the vpn in the hosts file shorewall blocks the vpns. shorewall/hosts #ZONE HOST(S) OPTIONS loc eth1:192.168.25.0/24 loctw eth1:192.168.50.0/24 locsa eth1:192.168.75.0/24 vpntw

Hi, I have multiple ppp interfaces that does not correspond to the same network usage. Do you know anything about trying to set definitively the ppp+ name ? or anything to adapt automagically iptables to the real network which is behind each ppp+ interface ? I''ve tooken a look into the IFNAME env var... but it doesn''t seems to work :c/ regards, -- BeTa

I have a firewall running Shorewall 1.3.13-1 from rpm on a redhat 7.3 box. The box has three nics assigned to zones loc net and dmz. We also have multiple vpn links accomplished via ssh tunnels, These links all come from dynamic IP addresses with known private subnets behind them. There are basically two types of networks these vpns connect, one with access to almost everything and one with

Hi I am looking at converting a Linux terminal server box to iptables using Shorewall 2.0. (At the moment it uses ipchains). The server currently has scripts which are called as each user logs in which run a series of "ipchains" commands to set the access rights for that user (and again to cancel them when the user logs out). My plan is to replace these scripts with ones that call

I have a private lan that is connected to the world via 3 dsl lines. I put up a linux box that handles all the dsl lines, lan gateway and all is working well...until...one of the dsl lines goes down. My routing table is: x.x.x.x dev ppp0 proto kernel scope link src x.x.x.x x.x.x.x dev ppp1 proto kernel scope link src x.x.x.x x.x.x.x dev ppp2 proto kernel scope link src x.x.x.x

Hi, i connect to the internet over my eth4 interface using pppoe. The internet always comes on ppp0. I am trying to setup an L2TP/IPSEC VPN and i am reading http://www.shorewall.net/IPSEC-2.6.html#RW-L2TP I notice in the example the interfaces file is given as: #ZONE INTERFACE BROADCAST OPTIONS net eth0 detect routefilter loc eth1

This is a minor release of Shorewall. WARNING: This release introduces incompatibilities with prior releases. See http://www.shorewall.net/upgrade_issues.htm. Changes are: a) There is now a new NONE policy specifiable in /etc/shorewall/policy. This policy will cause Shorewall to assume that there will never be any traffic between the source and destination zones. b) Shorewall no longer

My Internet gateway is using ADSL PPPoE connection with dynamic public IP assigned by ISP. My Internet gateway is Redhat AS3 U2, shorewall 2.0.9 As my ISP provided 4 simultaneous pppoe dailup connection for the same physical adsl line. My linux server can be configured for multiple pppoe connection i.e. ppp0, ppp1, ppp2, ppp3 Is it possible of shorewall to assigned say ppp0''s IP is

i''ve read your http://lartc.org/howto/lartc.rpdb.multiple-links.html article as well as Advanced IP Routing (esp. chapter 10.4) and still unable to make this thing work. am i that helpless? :) is there anyone to guide me through the multiple ISP setup? into details. i got 2 dsl connections from different ISPs (A and B), both connections use PPPoE, both got assigned with dynamic IPs

Hi, I''m in a process of setting up a firewall system, which is going to be also an ipsec/l2tp and pptp vpn server for some mobile clients. The problem is, that the system has two ISPs a cable one (no problems here) and a DSL provider. Because of the DSL provider the system is going to have one pppN interface for DSL (net zone) and many pppX interfaces for l2tp/pptp (loc zone)

Hello everyone: I have a problem with the shorewall configuration. Let''s me tell you. I have installed shorewall 2.0.4 into a machine with 2.6.8 kernel. This machine works like a software-router: it has 2 netcard eth0 goes to the local network 192.168.0.0/24 eth1 is an interface for ppp0 (there is an ADSL conected) I have defined the Network Zones (net, loc); The Network Interfaces

yes, this is a crazy subject. I have 4 ADSL lines to the same provider, which even have the same gateway. Those lines are connected to the same machine (more crazyness: even connected to the same nic. it works fine, I swear). this machine will serve this conenction to a local net. so, I setup the ifaces correctly, everything works. I add balancing using this command: # ip route replace default

Hi Gene, On Oct 21, 2014, at 9:12 PM, Gene Heskett <gheskett at wdtv.com> wrote: >> configure: error: libgd not found, required for CGI build >> >> And gdlib does not appear to be available from the repo's. > Sorry, I must have missed that message. This is still with Ubuntu 10.04, right? http://packages.ubuntu.com/source/lucid/nut lists the build dependencies,

Hello, I have a serious problem with HTB which I wasn''t able to solve myself. I run a masquerading router with ppp0 as interface to the Internet. Three clients need to share a downstream of 1 MBit, which I want to divide with tc. When I see a packet being forwarded to one of these clients, I give it the appropriate unique mark: iptables -t mangle -A FORWARD -d 192.168.34.141 -j MARK

On Tuesday 21 October 2014 22:06:48 Charles Lepple did opine And Gene did reply: > Hi Gene, > > On Oct 21, 2014, at 9:12 PM, Gene Heskett <gheskett at wdtv.com> wrote: > >> configure: error: libgd not found, required for CGI build > >> > >> And gdlib does not appear to be available from the repo's. > > Sorry, I must have missed that message.

I have a firewall with 2 connections to the internet (eth1 and eth2) and one LAN interface. on the LAN interface, the users can connect via PPTP. those authenticating via pptp shall be masqueraded over eth2, those not authenticating should be ordinary masqueraded over eth1. as from the archives I took the configuration like in FAQ32, but this doesn''t work with the ppp+ interfaces. I

On Oct 21, 2014, at 11:37 PM, Gene Heskett <gheskett at wdtv.com> wrote: > Hummm, that got me past that barricade, but then it needed asciidoc, which > pulled in everything else it was fussing about. The everything else was > close to all of tex and latex, something north of 220 megs worth. Drive > space I have, but thats a heck of big hunk of dependency. You mean that

Hi, can you tell me how to set up routing of packets comming from pptp clients connected to my FW. For now I managed to initialize the vpn with ppp+ byt I can''t MASQ it in the /etc/shorewall/masq file. I entered there this: eth0 eth1 and pptp is working fine but now everybody can change thair IPs and get Internet. How exactly should I set it up. I am running shorewall o n

Le mercredi 15 mars 2017 à 16:08 +0000, Rowland Penny via samba a écrit : > On Wed, 15 Mar 2017 17:13:43 +0200 > Arnaud Cruzel <a.cruzel at ifporient.org> wrote: > > > > > > OK, I tried that. After what there is no long problems for access > > to > > file server by an user without uidNumber. But now it's impossible > > for > > unix

hi, we use openvpn as for our vpn endpoints and we''ve got about 70-80 vpn connections which means we have tun0 - tun80 interface. i''d like to define one zone for all of our vpn connections how can I do that? actualy our local zone is 192.168.0.0/17 (not 16) and all of the vpn''s are in 192.168.128.0/17. our should i define somehow the local zone as 192.168.0.0/16? but in