Re: [Shorewall-users] Routing SSH through VPN

Richard Emling Sun, 07 Feb 2021 09:01:04 -0800

Hello.
.
Now I did a
shorewall clean and tried to ping the remote pi
Now I get:
From 192.168.180.1 icmp_seq=3 Destination Host Unreachable.
This is at least something else compared to my 1st attempt.
For clarification: the 192.168.180.1 is my shorewall hosting Pis address
as I see it from behind the firewall.
As I did a
shorewall start
the ping result was
From 192.168.179.2 icmp_seq=1 Destination Host Unreachable.
again for clarification:
192.168.179.2 is the address, my Fritz! Box assigns to the Shorewall
hosting Pi connected via LAN to the Fritz! Box.


I add my log from
shorewall show log
here:

Shorewall 5.2.3.2 Log (/var/log/messages) at heimdall - So 7. Feb 16:33:48=
 GMT 2021

Counters reset So 7. Feb 16:24:29 GMT 2021

Feb  7 16:05:31 net-fw DROP IN=3Deth0 OUT=3D SRC=3D192.168.179.1 DST=3D192=
.168.179.2 LEN=3D60 TOS=3D0x00 PREC=3D0x00 TTL=3D64 ID=3D36288 DF PROTO=3D=
TCP SPT=3D37377 DPT=3D80 WINDOW=3D14600 RES=3D0x00 SYN URGP=3D0
Feb  7 16:05:35 net-fw DROP IN=3Deth0 OUT=3D SRC=3D192.168.179.1 DST=3D192=
.168.179.2 LEN=3D60 TOS=3D0x00 PREC=3D0x00 TTL=3D64 ID=3D36289 DF PROTO=3D=
TCP SPT=3D37377 DPT=3D80 WINDOW=3D14600 RES=3D0x00 SYN URGP=3D0
Feb  7 16:11:15 net-fw DROP IN=3Deth0 OUT=3D SRC=3D192.168.179.1 DST=3D192=
.168.179.2 LEN=3D60 TOS=3D0x00 PREC=3D0x00 TTL=3D64 ID=3D5652 DF PROTO=3DT=
CP SPT=3D39585 DPT=3D80 WINDOW=3D14600 RES=3D0x00 SYN URGP=3D0
Feb  7 16:11:16 net-fw DROP IN=3Deth0 OUT=3D SRC=3D192.168.179.1 DST=3D192=
.168.179.2 LEN=3D60 TOS=3D0x00 PREC=3D0x00 TTL=3D64 ID=3D5653 DF PROTO=3DT=
CP SPT=3D39585 DPT=3D80 WINDOW=3D14600 RES=3D0x00 SYN URGP=3D0
Feb  7 16:11:18 net-fw DROP IN=3Deth0 OUT=3D SRC=3D192.168.179.1 DST=3D192=
.168.179.2 LEN=3D60 TOS=3D0x00 PREC=3D0x00 TTL=3D64 ID=3D5654 DF PROTO=3DT=
CP SPT=3D39585 DPT=3D80 WINDOW=3D14600 RES=3D0x00 SYN URGP=3D0
Feb  7 16:11:22 net-fw DROP IN=3Deth0 OUT=3D SRC=3D192.168.179.1 DST=3D192=
.168.179.2 LEN=3D60 TOS=3D0x00 PREC=3D0x00 TTL=3D64 ID=3D5655 DF PROTO=3DT=
CP SPT=3D39585 DPT=3D80 WINDOW=3D14600 RES=3D0x00 SYN URGP=3D0
Feb  7 16:17:01 net-fw DROP IN=3Deth0 OUT=3D SRC=3D192.168.179.1 DST=3D192=
.168.179.2 LEN=3D60 TOS=3D0x00 PREC=3D0x00 TTL=3D64 ID=3D36599 DF PROTO=3D=
TCP SPT=3D36020 DPT=3D80 WINDOW=3D14600 RES=3D0x00 SYN URGP=3D0
Feb  7 16:17:02 net-fw DROP IN=3Deth0 OUT=3D SRC=3D192.168.179.1 DST=3D192=
.168.179.2 LEN=3D60 TOS=3D0x00 PREC=3D0x00 TTL=3D64 ID=3D36600 DF PROTO=3D=
TCP SPT=3D36020 DPT=3D80 WINDOW=3D14600 RES=3D0x00 SYN URGP=3D0
Feb  7 16:17:04 net-fw DROP IN=3Deth0 OUT=3D SRC=3D192.168.179.1 DST=3D192=
.168.179.2 LEN=3D60 TOS=3D0x00 PREC=3D0x00 TTL=3D64 ID=3D36601 DF PROTO=3D=
TCP SPT=3D36020 DPT=3D80 WINDOW=3D14600 RES=3D0x00 SYN URGP=3D0
Feb  7 16:17:08 net-fw DROP IN=3Deth0 OUT=3D SRC=3D192.168.179.1 DST=3D192=
.168.179.2 LEN=3D60 TOS=3D0x00 PREC=3D0x00 TTL=3D64 ID=3D36602 DF PROTO=3D=
TCP SPT=3D36020 DPT=3D80 WINDOW=3D14600 RES=3D0x00 SYN URGP=3D0
Feb  7 16:21:29
Feb  7 16:21:29
Feb  7 16:22:47 net-fw DROP IN=3Deth0 OUT=3D SRC=3D192.168.179.1 DST=3D192=
.168.179.2 LEN=3D60 TOS=3D0x00 PREC=3D0x00 TTL=3D64 ID=3D59405 DF PROTO=3D=
TCP SPT=3D42117 DPT=3D80 WINDOW=3D14600 RES=3D0x00 SYN URGP=3D0
Feb  7 16:22:48 net-fw DROP IN=3Deth0 OUT=3D SRC=3D192.168.179.1 DST=3D192=
.168.179.2 LEN=3D60 TOS=3D0x00 PREC=3D0x00 TTL=3D64 ID=3D59406 DF PROTO=3D=
TCP SPT=3D42117 DPT=3D80 WINDOW=3D14600 RES=3D0x00 SYN URGP=3D0
Feb  7 16:22:50 net-fw DROP IN=3Deth0 OUT=3D SRC=3D192.168.179.1 DST=3D192=
.168.179.2 LEN=3D60 TOS=3D0x00 PREC=3D0x00 TTL=3D64 ID=3D59407 DF PROTO=3D=
TCP SPT=3D42117 DPT=3D80 WINDOW=3D14600 RES=3D0x00 SYN URGP=3D0
Feb  7 16:22:54 net-fw DROP IN=3Deth0 OUT=3D SRC=3D192.168.179.1 DST=3D192=
.168.179.2 LEN=3D60 TOS=3D0x00 PREC=3D0x00 TTL=3D64 ID=3D59408 DF PROTO=3D=
TCP SPT=3D42117 DPT=3D80 WINDOW=3D14600 RES=3D0x00 SYN URGP=3D0
Feb  7 16:28:27 net-fw DROP IN=3Deth0 OUT=3D SRC=3D192.168.179.1 DST=3D192=
.168.179.2 LEN=3D60 TOS=3D0x00 PREC=3D0x00 TTL=3D64 ID=3D59936 DF PROTO=3D=
TCP SPT=3D58402 DPT=3D80 WINDOW=3D14600 RES=3D0x00 SYN URGP=3D0
Feb  7 16:28:28 net-fw DROP IN=3Deth0 OUT=3D SRC=3D192.168.179.1 DST=3D192=
.168.179.2 LEN=3D60 TOS=3D0x00 PREC=3D0x00 TTL=3D64 ID=3D59937 DF PROTO=3D=
TCP SPT=3D58402 DPT=3D80 WINDOW=3D14600 RES=3D0x00 SYN URGP=3D0
Feb  7 16:28:30 net-fw DROP IN=3Deth0 OUT=3D SRC=3D192.168.179.1 DST=3D192=
.168.179.2 LEN=3D60 TOS=3D0x00 PREC=3D0x00 TTL=3D64 ID=3D59938 DF PROTO=3D=
TCP SPT=3D58402 DPT=3D80 WINDOW=3D14600 RES=3D0x00 SYN URGP=3D0
Feb  7 16:28:34 net-fw DROP IN=3Deth0 OUT=3D SRC=3D192.168.179.1 DST=3D192=
.168.179.2 LEN=3D60 TOS=3D0x00 PREC=3D0x00 TTL=3D64 ID=3D59939 DF PROTO=3D=
TCP SPT=3D58402 DPT=3D80 WINDOW=3D14600 RES=3D0x00 SYN URGP=3D0

clearing the loglimit flag unfortunately doesn't change anything
regarding the log output.

So I go with (3) and send you a dump with hope for help.

Thanks in advance

Richard












_______________________________________________
Shorewall-users mailing list
Shorewall-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-users

Re: [Shorewall-users] Routing SSH through VPN

Reply via email to