On 27/02/13 04:53, [email protected] wrote: > http://www.shorewall.net/support.htm#Guidelines d. > > root@joule:/home/peter# shorewall status > Shorewall-4.4.11.6 Status at joule - Tue Feb 26 20:01:32 PST 2013 > > Shorewall is running > State:Started (Tue Feb 26 18:33:00 PST 2013) > > e. From an attempted ftp connection, 142.103.107.137 > to the ISP, 64.59.128.134, ... > > f. ... the shorewall_dump.txt.bz2 is attached. > > Nevertheless the connection works for Cantor, > 172.24.1.2, to the ISP, 64.59.128.134. > > Thanks for any correction or advice, > ... Peter E. > > P.s. Network configuration is here > http://carnot.yi.org/NetworkExtant.jpg > and configuration data here. > http://carnot.yi.org/NetworksPage.html > > P.p.s. http://www.shorewall.net/support.htm#Guidelines > asks for /tmp/status.txt but the intention must have > been /tmp/shorewall_dump.txt. > > > > ------------------------------------------------------------------------------ > Everyone hates slow websites. So do we. > Make your web apps faster with AppDynamics > Download AppDynamics Lite for free today: > http://p.sf.net/sfu/appdyn_d2d_feb > > > _______________________________________________ > Shorewall-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/shorewall-users Perhaps someone else will get a better grip on this I'm struggling somewhat to work out what exactly is going where you have a lot of different components and some (Like the VPN) are in a position where they complicate the issue. My advise in this situation is to consider doing what I would do, start from the beginning with just the most basic setup you can get working ie direct connection from the firewall to the internet, no VPN link active. Make sure you can get that working then make sure it works from the hosts behind the firewall on that side. Similar strategy on Dalton's side then only once you have all machines on both sides with working connectivity you can bring up the VPN link and make sure that all works as intended and check you have things routing where you want them to go.
It may sound like a lot of hastle but when you have any setup with lots of parts and where you are building on additional parts which have dependencies bellow them (Ex the VPN link is dependant on the functioning of the links it runs over) it makes sense to systematically confirm all of those and then try adding each new piece until something breaks, then you have one problem to fix and know exactly where.
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Everyone hates slow websites. So do we. Make your web apps faster with AppDynamics Download AppDynamics Lite for free today: http://p.sf.net/sfu/appdyn_d2d_feb
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
