Andrew Stevens wrote: > Hi I am trying to connect from 10.64.64.6 on the openvpn, to > 10.32.64.13 on the local lan, and niether that, nore even pinging > 10.64.64.1(the vpn server, which is also the shorewall box), returns. > says detination unreachable.
You are not accepting any connections from vpn->loc and you are not accepting ping from vpn->fw. In both cases, the applicable policy is REJECT and the only relevant rule is to accept SSH from vpn->fw. Your firewall is doing exactly what you have told it to. It would be useful if you would set LOGFILE to point to ulogd's log; that way, "shorewall show log" would have shown you what was being rejected and a quick look at Shorewall FAQ 17 would have explained why. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
