Hello All! :)
Thanks for anyone who could help me with that one.
First, I do not see any error, or any trouble with the default log level. I
want to log in my corporate network through a contivity VPN. My firewall is
now my Debian server (since yesterday), before I was using a small dlink box
that was doing (wireless and routing) and my corporate laptop was connecting
through Contivity VPN (from Nortel) and it was working flawlessly.
So now the schema is:
Internet --> Debian Box + shorewall ---> Switch --> Laptop
Pretty simple to be honest and it's a dlink switch that is relatively no
brainer ;)
Everything is working except my Nortel PC Client to use with my ip phone.
To gather the most log I could, I put debug in every settings and this is
what I see when I use the ip phone
Oct 1 07:54:16 ZoneDry kernel: Shorewall:nat:OUTPUT:IN= OUT=ppp0 SRC=
67.71.188.26 DST=66.249.83.19 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=5141 DF
PROTO=TCP SPT=52336 DPT=80 WINDOW=5488 RES=0x00 SYN URGP=0
Oct 1 07:54:16 ZoneDry kernel: Shorewall:filter:OUTPUT:IN= OUT=ppp0 SRC=
67.71.188.26 DST=66.249.83.19 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=5141 DF
PROTO=TCP SPT=52336 DPT=80 WINDOW=5488 RES=0x00 SYN URGP=0
Oct 1 07:54:16 ZoneDry kernel: Shorewall:mangle:POSTROUTING:IN= OUT=ppp0
SRC=67.71.188.26 DST=66.249.83.19 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=5141
DF PROTO=TCP SPT=52336 DPT=80 WINDOW=5488 RES=0x00 SYN URGP=0
Oct 1 07:54:16 ZoneDry kernel: Shorewall:nat:POSTROUTING:IN= OUT=ppp0 SRC=
67.71.188.26 DST=66.249.83.19 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=5141 DF
PROTO=TCP SPT=52336 DPT=80 WINDOW=5488 RES=0x00 SYN URGP=0
Oct 1 07:54:34 ZoneDry kernel: Shorewall:mangle:PREROUTING:IN=ppp0 OUT=
MAC= SRC=219.148.119.2 DST=67.71.188.26 LEN=40 TOS=0x00 PREC=0x00 TTL=112
ID=256 DF PROTO=TCP SPT=12200 DPT=8000 WINDOW=8192 RES=0x00 SYN URGP=0
Oct 1 07:54:34 ZoneDry kernel: Shorewall:nat:PREROUTING:IN=ppp0 OUT= MAC=
SRC=219.148.119.2 DST=67.71.188.26 LEN=40 TOS=0x00 PREC=0x00 TTL=112 ID=256
DF PROTO=TCP SPT=12200 DPT=8000 WINDOW=8192 RES=0x00 SYN URGP=0
Oct 1 07:54:34 ZoneDry kernel: Shorewall:mangle:INPUT:IN=ppp0 OUT= MAC=
SRC=219.148.119.2 DST=67.71.188.26 LEN=40 TOS=0x00 PREC=0x00 TTL=112 ID=256
DF PROTO=TCP SPT=12200 DPT=8000 WINDOW=8192 RES=0x00 SYN URGP=0
Oct 1 07:54:34 ZoneDry kernel: Shorewall:filter:INPUT:IN=ppp0 OUT= MAC=
SRC=219.148.119.2 DST=67.71.188.26 LEN=40 TOS=0x00 PREC=0x00 TTL=112 ID=256
DF PROTO=TCP SPT=12200 DPT=8000 WINDOW=8192 RES=0x00 SYN URGP=0
Oct 1 07:54:34 ZoneDry kernel: Shorewall:mangle:PREROUTING:IN=ppp0 OUT=
MAC= SRC=219.148.119.2 DST=67.71.188.26 LEN=40 TOS=0x00 PREC=0x00 TTL=112
ID=256 DF PROTO=TCP SPT=12200 DPT=8080 WINDOW=8192 RES=0x00 SYN URGP=0
Oct 1 07:54:34 ZoneDry kernel: Shorewall:nat:PREROUTING:IN=ppp0 OUT= MAC=
SRC=219.148.119.2 DST=67.71.188.26 LEN=40 TOS=0x00 PREC=0x00 TTL=112 ID=256
DF PROTO=TCP SPT=12200 DPT=8080 WINDOW=8192 RES=0x00 SYN URGP=0
Oct 1 07:54:34 ZoneDry kernel: Shorewall:mangle:INPUT:IN=ppp0 OUT= MAC=
SRC=219.148.119.2 DST=67.71.188.26 LEN=40 TOS=0x00 PREC=0x00 TTL=112 ID=256
DF PROTO=TCP SPT=12200 DPT=8080 WINDOW=8192 RES=0x00 SYN URGP=0
Oct 1 07:54:34 ZoneDry kernel: Shorewall:filter:INPUT:IN=ppp0 OUT= MAC=
SRC=219.148.119.2 DST=67.71.188.26 LEN=40 TOS=0x00 PREC=0x00 TTL=112 ID=256
DF PROTO=TCP SPT=12200 DPT=8080 WINDOW=8192 RES=0x00 SYN URGP=0
I think that this is not showing anything but the message on the PC Client
is : The proxy is not responding. If a VPN client is needed to access the
proxy, please start it right now. But I'm connected to the corporate network
right now.
I'm pretty sure also that I already resolved that issue in the past, but I
don't remember how and where was the settings.
If you need more settings conf files on my sides, just ask me. I use a
simply ppp0 10.87.76.0/24 pour mon natting, rien d'autres de spécial.
Miche
-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2005.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
