On 12/10/2013 5:41 AM, Fábio Rabelo wrote: > Hi to all > > I have a vpn server configured in bridge more working perfectly for > over a year . > > I need to add a new bridge to it now, and I really not shore what I > amd doing wrong ! > > My /etc/openvpn contains 2 files : > > /etc/openvpn/bridge.conf > > remote 0.0.0.0 > dev tap0 > secret /etc/openvpn/bridge.key > > /etc/openvpn/cajamar.conf > > port 1195 > remote 0.0.0.0 > dev tap1 > secret /etc/openvpn/cajamar.key > > and my /etc/network/interfaces contains this : > > # The loopback network interface > auto lo > iface lo inet loopback > > # The internet network interface > auto eth1 > iface eth1 inet static > address 186.231.3.203 > netmask 255.255.255.248 > broadcast 186.231.3.207 > gateway 186.231.3.201 > > # The bridged vpn interface for Cenno > auto br0 > iface br0 inet static > pre-up /usr/sbin/openvpn --mktun --dev tap0 > pre-up /usr/sbin/brctl addbr br0 > address 172.16.0.4 > network 172.16.0.0 > broadcast 172.16.255.255 > netmask 255.255.0.0 > post-up /sbin/ip link set tap0 up > post-up /usr/sbin/brctl addif br0 tap0 > post-up /sbin/ip link set eth0 up > post-up /usr/sbin/brctl addif br0 eth0 > post-down /usr/sbin/brctl delbr br0 > post-down /usr/sbin/openvpn --rmtun tap0 > post-down /sbin/ip link set eth0 down > > # The bridged vpn interface for Cajamar > auto br1 > iface br1 inet manual > pre-up /usr/sbin/openvpn --mktun --dev tap1 > pre-up /usr/sbin/brctl addbr br1 > post-up /sbin/ip link set tap1 up > post-up /usr/sbin/brctl addif br1 tap1 > post-up /sbin/ip link set eth3 up > post-up /usr/sbin/brctl addif br1 eth3 > post-down /usr/sbin/brctl delbr br1 > post-down /usr/sbin/openvpn --rmtun tap1 > post-down /sbin/ip link set eth3 down > > > There is no error msg in the log in any os 3 servers ... > > The old one, ( refered just as "brigde" ) still working fine, the new > one ( refered as "cajamar" are not working .... > > Any help will be welcome .... thanks in advance ...
Fábio, This is a Shorewall list. If you want our help, you are going to have to give us the details of your Shorewall configuration. The output of 'shorewall dump' collected as described at http://www.shorewall.org/support.htm#guidelines would be best. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Rapidly troubleshoot problems before they affect your business. Most IT organizations don't have a clear picture of how application performance affects their revenue. With AppDynamics, you get 100% visibility into your Java,.NET, & PHP application. Start your 15-day FREE TRIAL of AppDynamics Pro! http://pubads.g.doubleclick.net/gampad/clk?id=84349831&iu=/4140/ostg.clktrk
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
