On 5/20/2014 3:46 PM, Vernon Fort wrote: > I have a strongswan vpn configured for a roadwarrior (windows 7 IKEv2) > using dhcp. It successfully connects and gets an address in the same > subnet as the internal network – 192.168.1.0/24. I can ping to/from the > firewall but not from the vpn client to any other host in the network. > > > > Shorewall:FORWARD:REJECT:IN=enp2s0 (this is the vpn and net interface).
The entire message is important! > > The interfaces are: > > net enp2s0 detect > tcpflags,routefilter,nosmurfs,logmartians > > loc enp3s7 detect tcpflags,nosmurfs > > > > what options am I missing? I have tried to add the routeback to the > net interface but then it prevents all hosts from accessing the internet. We don't have enough information. Check Shorewall FAQ 17 and if that doesn't help, at least post the entire log message. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ "Accelerate Dev Cycles with Automated Cross-Browser Testing - For FREE Instantly run your Selenium tests across 300+ browser/OS combos. Get unparalleled scalability from the best Selenium testing platform available Simple to use. Nothing to install. Get started now for free." http://p.sf.net/sfu/SauceLabs
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
