On 04/21/2016 09:53 AM, Eduard Vidal i Tulsà wrote: > Hello, i have this scheme > > > Internet > | > ---------------------- > | adsl router | > |ip:192.168.1.1| ---- [printer in usb port] > ---------------------- > | > ------------------------------------- > |firewall wlan0 to router | > | eth0 localnetwork| > | tun0 openvpn | > ------------------------------------- > | > --------------------------------------- > | few local scales in shop | > --------------------------------------- > I tagged wlan0 has net > eth0 has local > and tun0 has vpn > in /etc/interfaces like that: > #cat interfaces|grep -v \# > ?FORMAT 2 > net wlan0 > dhcp,tcpflags,nosmurfs,routefilter,logmartians,sourceroute=0 > vpn tun0 > dhcp,tcpflags,nosmurfs,routefilter,logmartians,sourceroute=0 > loc eth0 > dhcp,tcpflags,nosmurfs,routefilter,logmartians,sourceroute=0 > > > > Sorry, but i can't understand why 192.168.1.1 is not in the net network. > If is outside firewall
Yes -- I intended to remove that comment but forgot :-\ > > I try to masq vpn netowrk like localnetwork iin masq file: > #cat masq |grep -v \# > wlan0 10.1.3.0/24 <http://10.1.3.0/24>, \ > 10.0.8.0/24 <http://10.0.8.0/24> Which is what I suggested at the end of my email. > > Now a nmap from a remote location say is not filtered. Good :D > #nmap 10.0.8.103 > > Starting Nmap 7.12 ( https://nmap.org ) at 2016-04-21 16:43 UTC > Nmap scan report for 10.0.8.103 > Host is up (0.12s latency). > Not shown: 995 closed ports > PORT STATE SERVICE > 22/tcp open ssh > 53/tcp open domain > 80/tcp open http > 6000/tcp open X11 > 8888/tcp open sun-answerbook > > but still can no open web page in all of two ports i set up for acces to > on router. > I add this line in rules: > DNAT vpn net:192.168.1.1:80 > <http://192.168.1.1:80> tcp 8888 > > > I really apreciate all your help :D > Please: - shorewall reset - Try to open the web interface to the router through the VPN - shorewall dump > dump Send me the 'dump' file. Thanks, -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Find and fix application performance issues faster with Applications Manager Applications Manager provides deep performance insights into multiple tiers of your business applications. It resolves application problems quickly and reduces your MTTR. Get your free trial! https://ad.doubleclick.net/ddm/clk/302982198;130105516;z
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
