[Vtun-Users] Connection denied without explanation

Thu, 26 Jan 2017 14:29:42 -0800 

Hello everybody

I'm seeking help into debuggig a strange situation

We 've got here a bunch of VTUN hosts and I've got a strange behavior
from certain computer

Server is using vtun 3.0.3
Client have vtun 3.0.2 (and some 2.6, but that's not the fact)

Server config :

---------

options {
  port 21;            # Listen on this port.

  # Path to various programs
  ifconfig      /sbin/ifconfig;
  route         /sbin/route;

}

# Default host options
default {
  compress no;          # Compression is off by default
  speed 0;              # By default maximum speed, NO shaping
}

# host A
hosta{
  passwd passa;
  type tun;
  proto tcp;
  encrypt oldblowfish128ecb;
  keepalive no;
  up {
    program /usr/local/sbin/killtun "hosta 10.239.3.4 %d" wait;
    ifconfig "%% 10.239.3.3 pointopoint 10.239.3.4 mtu 1350";
  };
}

# host b
hostb{
  passwd passb;
  type tun;
  proto tcp;
  encrypt oldblowfish128ecb;
  keepalive no;
  up {
    program /usr/local/sbin/killtun "hostb 10.239.3.6 %d" wait;
    ifconfig "%% 10.239.3.5 pointopoint 10.239.3.6 mtu 1350";
  };
}

------------

On the client side
-----
options {
        port 21;
        timeout 60;
        ifconfig /sbin/ifconfig;
        route /sbin/route;
        firewall /sbin/iptables;
}
hosta {
        passwd passa;
        device tun0;
        up {
            ifconfig "%% 10.239.3.4 pointopoint 10.239.3.3 mtu 1000";
        };
}
------------

And same thing for host B (hostb, passb and IP changed of course)


Host B connect flawlessly

Host A just has in syslog a "connection denied by <server IP>"
On the server side in syslog "connection denied from <Client IP>"

The configs are identical, the systems are identical, the versions are
identical

That's not a firewall problem, tcpdump show connection on both sides

How is it possible ? How can I have a bit more information on the deny
reason ?

TIA for your help

Sincerly

Laurent COOPER

------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, SlashDot.org! http://sdm.link/slashdot
_______________________________________________
Vtun-Users mailing list
Vtun-Users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/vtun-users

Reply via email to