Hello, thanks very much for your help.I answer each of your questions or
coments down:
I've an openvpn server running on the firewall and working on eth1 and
I´d like to config my firewall to let a pptp client, running on my LAN
(with IP 10.10.80.10), connect to a pptp remote vpn server of a
different company. But I am not able to do this, an that´s my problem :)
Can we have a few more details please besides "it doesn't work"?
Of course, the server named Galileo which IP es 10.10.80.10
connects to pptp remote vpn successfully but the connection
goes down after exactly 30 seconds ... Always 30 seconds!!
/etc/shorewall/policy:
#SOURCE DEST POLICY LOG LIMIT:BURST
# LEVEL
loc net DROP info
Very unfriendly policy for loc->net; much nicer for your local users if
you use REJECT.
That's Ok :). I change it.
fw loc DROP info
fw net DROP info
fw dmz DROP info
loc dmz DROP info
##OpenVPN ------ ##
vpn fw ACCEPT info
fw vpn ACCEPT info
net vpn DROP info
loc vpn ACCEPT info
vpn loc ACCEPT info
vpn net DROP info
vpn dmz DROP info
##DMZ ---------- ##
dmz net DROP info
dmz fw DROP info
dmz loc DROP info
dmz vpn DROP info
dmz all DROP info
## -------------
net all DROP info
all all REJECT info
/etc/shorewall/params:
LAN_IF=eth0
ADSL_IF=eth1
DSL_IF=eth2
DMZ_IF=eth3
IP_GALILEO=10.10.80.10 --> it´s the pptp client.
/etc/shorewall/masq:
#INTERFACE SOURCE ADDRESS PROTO PORT(S)
IPSEC MARK
$ADSL_IF 10.10.100.3 10.10.90.3
$DSL_IF 10.10.90.3 10.10.100.3
$ADSL_IF 10.10.110.0/24
$DSL_IF 10.10.110.0/24
$ADSL_IF 10.10.80.0/24
$DSL_IF 10.10.80.0/24
Given that your external IP addresses are in the RFC 1918 range, you are
doing "double NAT" of all of your traffic. Do you know for certain that
this works in a single-ISP configuration?
At this point I may add that this /etc/shorewall/masq config is
so confused for me. When I setup MultiISP Config I followed the
instrucctions from here:
http://blog.nkadesign.com/2009/sysadmin-multiple-isp-firewall-
servers-and-redundancy/ and thos article helped me so much,
but in the case of masq file, I never understood why this
config ....
About your question, I don´t understand why you say I´m using
double NAT ...
/etc/shorewall/tcrules:
#MARK SOURCE DEST PROTO DEST SOURCE USER
TEST LENGTH TOS
# PORT(S) PORT(S)
0x6:P 10.10.80.0/24 - tcp 80,443
#All outgoing traffic of port 1723 and gre protocol is routed through
isp_6M
0x6:P 10.10.80.10 - tcp 1723
0x6:P 10.10.80.10 - udp 1723
0x6:P 10.10.80.10 - gre
0x6:P 10.10.80.10 - 47
Last rule is redundant -- gre == 47
Ok, thanks. I take note.
/etc/shorewall/route_rules:
#SOURCE DEST PROVIDER PRIORITY
$DMZ_IF - Isp_1M 1000
/etc/shorewall/rules: (just what is concerned to pptp client config):
ACCEPT loc:$IP_GALILEO net
All of the following rules are redundant
Again, I take note. I´ve all of this rules, because I have
tried many rules to run pptp client ...
ACCEPT loc:$IP_GALILEO net 47
ACCEPT loc:$IP_GALILEO net gre
ACCEPT loc:$IP_GALILEO net tcp 1723
ACCEPT $FW net 47
ACCEPT $FW net gre
ACCEPT $FW net tcp 1723
DNAT:info net:$DSL_IF loc:$IP_GALILEO 47
DNAT:info net:$DSL_IF loc:$IP_GALILEO tcp 1723
DNAT:info net:$DSL_IF loc:$IP_GALILEO gre
I also attach a shorewall dump file to analyze and troubleshoot my
network config. I would be pleasant if someone could help me with these
problem.
I think you will need to use a packet sniffer to see what is happening
on the external interface. Other than the fact that you have many
unneeded rules, I don't see anything wrong with your Shorewall setup.
I attach three files, that are outputs of
#tcpdump -e -v -i eth1 -n dst host ip_pptpserver
where pptpserver is 106.Red-214-4-50 and 10.10.80.10 is my
pptpclient.
The IP´s server when it is connected to the vpn is
192.168.11.83.
May I configure any especific rule for IP 192.168.11.83? ...
Even I´ve also tried openning al zones with ACCEPT in the policy file
but it hasn´t worked....
I would be very pleasant if someone was able to help me, because I don´t
find any solution.
Best Regards
Miguel A. Velasco
IT Manager.
14:02:58.788465 IP 10.10.90.12.b2n >
106.Red-214-4-50.staticIP.rima-tde.net.pptp: S 1354853625:1354853625(0) win
65535 <mss 1460,nop,nop,sackOK>
14:02:58.871886 IP 10.10.90.12.b2n >
106.Red-214-4-50.staticIP.rima-tde.net.pptp: . ack 551656157 win 65535
14:02:58.871950 IP 10.10.90.12.b2n >
106.Red-214-4-50.staticIP.rima-tde.net.pptp: P 0:156(156) ack 1 win 65535: pptp
CTRL_MSGTYPE=SCCRQ PROTO_VER(1.0) FRAME_CAP(A) BEARER_CAP(A) MAX_CHAN(0)
FIRM_REV(3790) [|pptp]
14:02:58.971746 IP 10.10.90.12.b2n >
106.Red-214-4-50.staticIP.rima-tde.net.pptp: P 156:324(168) ack 157 win 65379:
pptp CTRL_MSGTYPE=OCRQ CALL_ID(1179) CALL_SER_NUM(1429) MIN_BPS(300)
MAX_BPS(100000000) BEARER_TYPE(Any) FRAME_TYPE(E) RECV_WIN(64) PROC_DELAY(0)
PHONE_NO_LEN(0) [|pptp]
14:02:59.075936 IP 10.10.90.12.b2n >
106.Red-214-4-50.staticIP.rima-tde.net.pptp: P 324:348(24) ack 189 win 65347:
pptp CTRL_MSGTYPE=SLI PEER_CALL_ID(4352) SEND_ACCM(0xffffffff)
RECV_ACCM(0xffffffff)
14:02:59.078440 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 0, length 37: LCP, Conf-Request (0x01), id 0, length 23
14:02:59.107328 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 1, ack 0, length 48: LCP, Conf-Ack (0x02), id 1, length 30
14:02:59.160900 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 2, ack 1, length 38: LCP, Conf-Request (0x01), id 1, length 20
14:02:59.244750 IP 10.10.90.12.b2n >
106.Red-214-4-50.staticIP.rima-tde.net.pptp: P 348:372(24) ack 189 win 65347:
pptp CTRL_MSGTYPE=SLI PEER_CALL_ID(4352) SEND_ACCM(0x00000000)
RECV_ACCM(0xffffffff)
14:02:59.244804 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 3, ack 2, length 36: LCP, Ident (0x0c), id 2, length 20
14:02:59.244865 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 4, length 37: LCP, Ident (0x0c), id 3, length 25
14:02:59.245893 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 5, length 45: PAP, Auth-Req (0x01), id 61, Peer
CLIENTES\saferain, Name saferain
14:02:59.247962 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 6, ack 3, length 26: LCP, Echo-Reply (0x0a), id 0, length 10
14:02:59.340833 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 7, ack 6, length 28: unknown ctrl-proto (0x80fd), Conf-Request
(0x01), id 4, length 12
14:02:59.342037 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 8, length 48: IPCP, Conf-Request (0x01), id 5, length 36
14:02:59.342791 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 9, ack 7, length 28: IPCP, Conf-Ack (0x02), id 1, length 12
14:02:59.425784 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 10, ack 9, length 40: IPCP, Conf-Request (0x01), id 6, length 24
14:02:59.506908 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 11, ack 10, length 40: IPCP, Conf-Request (0x01), id 7, length 24
14:02:59.600582 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 12, ack 11, length 57: IP 192.168.11.83 > IGMP.MCAST.NET: igmp
v3 report, 1 group record(s)
14:02:59.600636 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 13, length 177: IP 192.168.11.83.sd > 239.255.219.45.9877: UDP,
length 136
14:02:59.668674 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 14, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:03:00.417185 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 15, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:03:00.586084 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 16, length 53: IP 192.168.11.83 > IGMP.MCAST.NET: igmp v3
report, 1 group record(s)
14:03:01.167210 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 17, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:03:01.918272 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 18, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:03:02.595618 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 19, length 341: IP 192.168.11.83.bootpc >
255.255.255.255.bootps: BOOTP/DHCP, Request, length: 300
14:03:02.668458 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 20, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:03:02.668513 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 21, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:03:03.417273 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 22, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:03:03.417337 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 23, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:03:04.167251 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 24, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:03:04.167307 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 25, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:03:04.917297 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 26, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:03:04.917356 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 27, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:03:05.668581 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 28, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:03:05.668636 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 29, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:03:06.417294 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 30, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:03:06.417350 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 31, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:03:07.167300 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 32, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:03:07.167359 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 33, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:03:07.596197 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 34, length 341: IP 192.168.11.83.bootpc >
255.255.255.255.bootps: BOOTP/DHCP, Request, length: 300
14:03:07.917316 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 35, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:03:07.917373 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 36, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:03:08.669142 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 37, length 219: IP 192.168.11.83.netbios-dgm >
255.255.255.255.netbios-dgm: NBT UDP PACKET(138)
14:03:10.168470 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 38, length 219: IP 192.168.11.83.netbios-dgm >
255.255.255.255.netbios-dgm: NBT UDP PACKET(138)
14:03:11.667406 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 39, length 219: IP 192.168.11.83.netbios-dgm >
255.255.255.255.netbios-dgm: NBT UDP PACKET(138)
14:03:13.167453 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4352, seq 40, length 219: IP 192.168.11.83.netbios-dgm >
255.255.255.255.netbios-dgm: NBT UDP PACKET(138)
14:03:29.333982 IP 10.10.90.12.b2n >
106.Red-214-4-50.staticIP.rima-tde.net.pptp: F 372:372(0) ack 190 win 65347
14:03:53.047937 IP 10.10.90.12.pdps >
106.Red-214-4-50.staticIP.rima-tde.net.pptp: S 1756412776:1756412776(0) win
65535 <mss 1460,nop,nop,sackOK>
14:03:53.131378 IP 10.10.90.12.pdps >
106.Red-214-4-50.staticIP.rima-tde.net.pptp: . ack 601326589 win 65535
14:03:53.132531 IP 10.10.90.12.pdps >
106.Red-214-4-50.staticIP.rima-tde.net.pptp: P 0:156(156) ack 1 win 65535: pptp
CTRL_MSGTYPE=SCCRQ PROTO_VER(1.0) FRAME_CAP(A) BEARER_CAP(A) MAX_CHAN(0)
FIRM_REV(3790) [|pptp]
14:03:53.232524 IP 10.10.90.12.pdps >
106.Red-214-4-50.staticIP.rima-tde.net.pptp: P 156:324(168) ack 157 win 65379:
pptp CTRL_MSGTYPE=OCRQ CALL_ID(1314) CALL_SER_NUM(1430) MIN_BPS(300)
MAX_BPS(100000000) BEARER_TYPE(Any) FRAME_TYPE(E) RECV_WIN(64) PROC_DELAY(0)
PHONE_NO_LEN(0) [|pptp]
14:03:53.330520 IP 10.10.90.12.pdps >
106.Red-214-4-50.staticIP.rima-tde.net.pptp: P 324:348(24) ack 189 win 65347:
pptp CTRL_MSGTYPE=SLI PEER_CALL_ID(4480) SEND_ACCM(0xffffffff)
RECV_ACCM(0xffffffff)
14:03:53.332833 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 0, length 37: LCP, Conf-Request (0x01), id 0, length 23
14:03:53.335594 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 1, ack 0, length 48: LCP, Conf-Ack (0x02), id 1, length 30
14:03:53.421515 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 2, ack 1, length 38: LCP, Conf-Request (0x01), id 1, length 20
14:03:53.504128 IP 10.10.90.12.pdps >
106.Red-214-4-50.staticIP.rima-tde.net.pptp: P 348:372(24) ack 189 win 65347:
pptp CTRL_MSGTYPE=SLI PEER_CALL_ID(4480) SEND_ACCM(0x00000000)
RECV_ACCM(0xffffffff)
14:03:53.504264 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 3, ack 2, length 36: LCP, Ident (0x0c), id 2, length 20
14:03:53.504318 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 4, length 37: LCP, Ident (0x0c), id 3, length 25
14:03:53.506200 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 5, length 45: PAP, Auth-Req (0x01), id 62, Peer
CLIENTES\saferain, Name saferain
14:03:53.508590 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 6, ack 3, length 26: LCP, Echo-Reply (0x0a), id 0, length 10
14:03:53.599646 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 7, ack 6, length 28: unknown ctrl-proto (0x80fd), Conf-Request
(0x01), id 4, length 12
14:03:53.600850 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 8, length 48: IPCP, Conf-Request (0x01), id 5, length 36
14:03:53.602148 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 9, ack 7, length 28: IPCP, Conf-Ack (0x02), id 1, length 12
14:03:53.691171 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 10, ack 9, length 40: IPCP, Conf-Request (0x01), id 6, length 24
14:03:53.774720 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 11, ack 10, length 40: IPCP, Conf-Request (0x01), id 7, length 24
14:03:53.870256 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 12, ack 11, length 57: IP 192.168.11.83 > IGMP.MCAST.NET: igmp
v3 report, 1 group record(s)
14:03:53.871420 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 13, length 177: IP 192.168.11.83.sd > 239.255.219.45.9877: UDP,
length 136
14:03:53.937907 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 14, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:03:54.686672 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 15, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:03:54.856547 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 16, length 53: IP 192.168.11.83 > IGMP.MCAST.NET: igmp v3
report, 1 group record(s)
14:03:55.437727 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 17, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:03:56.186682 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 18, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:03:56.866185 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 19, length 341: IP 192.168.11.83.bootpc >
255.255.255.255.bootps: BOOTP/DHCP, Request, length: 300
14:03:56.936936 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 20, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:03:56.936989 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 21, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:03:57.686725 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 22, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:03:57.686782 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 23, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:03:58.436721 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 24, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:03:58.436777 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 25, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:03:59.186748 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 26, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:03:59.186805 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 27, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:03:59.937026 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 28, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:03:59.937081 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 29, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:04:00.686770 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 30, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:04:00.686826 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 31, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:04:00.866670 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 32, length 341: IP 192.168.11.83.bootpc >
255.255.255.255.bootps: BOOTP/DHCP, Request, length: 300
14:04:01.436765 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 33, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:04:01.436820 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 34, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:04:02.186772 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 35, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:04:02.186828 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 36, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:04:02.937597 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 37, length 219: IP 192.168.11.83.netbios-dgm >
255.255.255.255.netbios-dgm: NBT UDP PACKET(138)
14:04:04.437944 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 38, length 219: IP 192.168.11.83.netbios-dgm >
255.255.255.255.netbios-dgm: NBT UDP PACKET(138)
14:04:05.937946 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 39, length 219: IP 192.168.11.83.netbios-dgm >
255.255.255.255.netbios-dgm: NBT UDP PACKET(138)
14:04:07.437985 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4480, seq 40, length 219: IP 192.168.11.83.netbios-dgm >
255.255.255.255.netbios-dgm: NBT UDP PACKET(138)
14:04:23.647704 IP 10.10.90.12.pdps >
106.Red-214-4-50.staticIP.rima-tde.net.pptp: F 372:372(0) ack 190 win 65347
14:04:55.435580 IP 10.10.90.12.apri-lm >
106.Red-214-4-50.staticIP.rima-tde.net.pptp: S 3960246539:3960246539(0) win
65535 <mss 1460,nop,nop,sackOK>
14:04:55.519745 IP 10.10.90.12.apri-lm >
106.Red-214-4-50.staticIP.rima-tde.net.pptp: . ack 685782098 win 65535
14:04:55.519819 IP 10.10.90.12.apri-lm >
106.Red-214-4-50.staticIP.rima-tde.net.pptp: P 0:156(156) ack 1 win 65535: pptp
CTRL_MSGTYPE=SCCRQ PROTO_VER(1.0) FRAME_CAP(A) BEARER_CAP(A) MAX_CHAN(0)
FIRM_REV(3790) [|pptp]
14:04:55.767727 IP 10.10.90.12.apri-lm >
106.Red-214-4-50.staticIP.rima-tde.net.pptp: P 156:324(168) ack 157 win 65379:
pptp CTRL_MSGTYPE=OCRQ CALL_ID(1447) CALL_SER_NUM(1433) MIN_BPS(300)
MAX_BPS(100000000) BEARER_TYPE(Any) FRAME_TYPE(E) RECV_WIN(64) PROC_DELAY(0)
PHONE_NO_LEN(0) [|pptp]
14:04:55.876943 IP 10.10.90.12.apri-lm >
106.Red-214-4-50.staticIP.rima-tde.net.pptp: P 324:348(24) ack 189 win 65347:
pptp CTRL_MSGTYPE=SLI PEER_CALL_ID(4864) SEND_ACCM(0xffffffff)
RECV_ACCM(0xffffffff)
14:04:55.881419 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 0, length 37: LCP, Conf-Request (0x01), id 0, length 23
14:04:55.924419 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 1, ack 0, length 48: LCP, Conf-Ack (0x02), id 1, length 30
14:04:55.965394 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 2, ack 1, length 38: LCP, Conf-Request (0x01), id 1, length 20
14:04:56.061928 IP 10.10.90.12.apri-lm >
106.Red-214-4-50.staticIP.rima-tde.net.pptp: P 348:372(24) ack 189 win 65347:
pptp CTRL_MSGTYPE=SLI PEER_CALL_ID(4864) SEND_ACCM(0x00000000)
RECV_ACCM(0xffffffff)
14:04:56.062052 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 3, ack 2, length 36: LCP, Ident (0x0c), id 2, length 20
14:04:56.062114 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 4, length 37: LCP, Ident (0x0c), id 3, length 25
14:04:56.063986 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 5, length 45: PAP, Auth-Req (0x01), id 63, Peer
CLIENTES\saferain, Name saferain
14:04:56.065449 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 6, ack 3, length 26: LCP, Echo-Reply (0x0a), id 0, length 10
14:04:56.157503 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 7, ack 6, length 28: unknown ctrl-proto (0x80fd), Conf-Request
(0x01), id 4, length 12
14:04:56.158708 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 8, length 48: IPCP, Conf-Request (0x01), id 5, length 36
14:04:56.159659 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 9, ack 7, length 28: IPCP, Conf-Ack (0x02), id 1, length 12
14:04:56.244101 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 10, ack 9, length 40: IPCP, Conf-Request (0x01), id 6, length 24
14:04:56.327047 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 11, ack 10, length 40: IPCP, Conf-Request (0x01), id 7, length 24
14:04:56.420826 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 12, ack 11, length 57: IP 192.168.11.83 > IGMP.MCAST.NET: igmp
v3 report, 1 group record(s)
14:04:56.420880 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 13, length 177: IP 192.168.11.83.sd > 239.255.219.45.9877: UDP,
length 136
14:04:56.488780 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 14, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:04:57.237520 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 15, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:04:57.408487 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 16, length 53: IP 192.168.11.83 > IGMP.MCAST.NET: igmp v3
report, 1 group record(s)
14:04:57.988605 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 17, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:04:58.738616 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 18, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:04:59.416037 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 19, length 341: IP 192.168.11.83.bootpc >
255.255.255.255.bootps: BOOTP/DHCP, Request, length: 300
14:04:59.487757 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 20, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:04:59.487813 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 21, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:05:00.237583 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 22, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:05:00.237639 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 23, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:05:00.987601 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 24, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:05:00.987658 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 25, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:05:01.737618 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 26, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:05:01.737674 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 27, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:05:02.488983 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 28, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:05:02.489046 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 29, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:05:03.238754 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 30, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:05:03.238825 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 31, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:05:03.987661 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 32, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:05:03.987722 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 33, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:05:04.416607 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 34, length 341: IP 192.168.11.83.bootpc >
255.255.255.255.bootps: BOOTP/DHCP, Request, length: 300
14:05:04.737681 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 35, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:05:04.737744 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 36, length 109: IP 192.168.11.83.netbios-ns >
255.255.255.255.netbios-ns: NBT UDP PACKET(137): REGISTRATION; REQUEST;
BROADCAST
14:05:05.488439 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 37, length 219: IP 192.168.11.83.netbios-dgm >
255.255.255.255.netbios-dgm: NBT UDP PACKET(138)
14:05:06.987768 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 38, length 219: IP 192.168.11.83.netbios-dgm >
255.255.255.255.netbios-dgm: NBT UDP PACKET(138)
14:05:08.487791 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 39, length 219: IP 192.168.11.83.netbios-dgm >
255.255.255.255.netbios-dgm: NBT UDP PACKET(138)
14:05:09.987784 IP 10.10.90.12 > 106.Red-214-4-50.staticIP.rima-tde.net: GREv1,
call 4864, seq 40, length 219: IP 192.168.11.83.netbios-dgm >
255.255.255.255.netbios-dgm: NBT UDP PACKET(138)
14:05:26.261015 IP 10.10.90.12.apri-lm >
106.Red-214-4-50.staticIP.rima-tde.net.pptp: F 372:372(0) ack 190 win 65347
------------------------------------------------------------------------------
SOLARIS 10 is the OS for Data Centers - provides features such as DTrace,
Predictive Self Healing and Award Winning ZFS. Get Solaris 10 NOW
http://p.sf.net/sfu/solaris-dev2dev
_______________________________________________
Shorewall-users mailing list
Shorewall-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-users