Hi Thomas On 27/03/2015 15:14, Thomas Winkler wrote: > Hello, > > @ Ahmed : I used your latest rule but still it doesn't work. > > This is the iptables LOG output after running shorewall with your rule added : > > INPUT:DROP:IN=eth0 OUT= MAC=XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX > SRC=192.168.70.85 DST=192.168.70.19 LEN=52 TOS=0x00 PREC=0x00 TTL=128 > ID=14365 DF PROTO=TCP SPT=51191 DPT=1194 WINDOW=8192 RES=0x00 SYN URGP=0 > > > So the iptable is still dropping the VPN client's initial connection request > on port 1194.
Tom does seem to be back in circulation so here is the correct way to report the problem! Visit http://www.shorewall.net/support.htm Read through it and follow the steps! What Tom really needs is a dump from shorewall when you are trying the openvpn connection. shorewall dump is your friend for this. You MUST attach the gzipped or bzipped dump with your email and not put it in a dropbox. All I can go on to help out a bit is my experiences. Sorry that I cannot help any further but will watch the thread to see what transpires! Ang -- Angela Williams angierfw at gmail dot com Linux/Networking Hacker Blog http://angierfw.wordpress.com Smile! Yahshua Loves You! ------------------------------------------------------------------------------ Dive into the World of Parallel Programming The Go Parallel Website, sponsored by Intel and developed in partnership with Slashdot Media, is your hub for all things parallel software development, from weekly thought leadership blogs to news, videos, case studies, tutorials and more. Take a look and join the conversation now. http://goparallel.sourceforge.net/ _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
