Re: [Shorewall-users] Hub/Spoke OpenVPN can't communicate from Client A to Client B - FORWARD:REJECT

Wed, 26 Mar 2008 00:03:59 -0700 

Thanks for the fast reply and resolution! I added routeback to the vpn 
interface as per the file below and it all started working:
 
router-hq:~# cat 
/etc/shorewall/interfaces################################################################################ZONE
   INTERFACE       BROADCAST       OPTIONSlana    eth0            detect        
  tcpflags,nosmurfslanb    eth1            detect          tcpflags,nosmurfsdmz 
    eth2            detectnet     eth3            detect          
tcpflags,dhcp,routefilter,nosmurfs,logmartiansvpn     tun0            -         
      routeback#LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT 
REMOVEFYI i also pushed the route "172.16.1.0 255.255.255.0" to clients so they 
could also connect direct to vpn end points should any road warriors dial in.
 
Thanks very much for the help,
 
Chris



> Date: Wed, 26 Mar 2008 06:40:08 +0000> From: [EMAIL PROTECTED]> To: 
> [email protected]> Subject: Re: [Shorewall-users] 
> Hub/Spoke OpenVPN can't communicate from Client A to Client B - 
> FORWARD:REJECT:IN=tun0 OUT=tun0> > On Wed, Mar 26, 2008 at 06:30:51AM +0000, 
> Chris Morley wrote:> > So in summary, how can i route packets which come in 
> over tun0/vpn> > back out via the same interface?> > Without looking at the 
> problem, my bet's on 'routeback'.> > 
> -------------------------------------------------------------------------> 
> Check out the new SourceForge.net Marketplace.> It's the best place to buy or 
> sell services for> just about anything Open Source.> 
> http://ad.doubleclick.net/clk;164216239;13503038;w?http://sf.net/marketplace> 
> _______________________________________________> Shorewall-users mailing 
> list> [email protected]> 
> https://lists.sourceforge.net/lists/listinfo/shorewall-users
_________________________________________________________________
Welcome to the next generation of Windows Live
http://www.windowslive.co.uk/get-live
-------------------------------------------------------------------------
Check out the new SourceForge.net Marketplace.
It's the best place to buy or sell services for
just about anything Open Source.
http://ad.doubleclick.net/clk;164216239;13503038;w?http://sf.net/marketplace
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users

Reply via email to