>>> On 10/16/2014 12:54 PM, Vernon Fort wrote:
>>> I cannot advise you without seeing the output of 'shorewall dump'.
>>>
>>> Attached.
>>>
>
>> Both the source and destination IP addresses are within the local LAN.
>> What is the configured netmask on the local system with IP address
>> 192.168.1.50?
>
> 255.255.255.0. The road warrior client get a DHCP assigned address from
> 192.168.1.50.
>> And that address is in the 192.168.5.0/24 network?
NO - the 192.168.5.0/24 is a static VPN connection to another office.
>> Which is a little odd that I cannot ping or query DNS from the same server
>> 2003 that issued the DHCP address.
>> Cannot ping which hosts? Internet?
The 192.168.1.50 is a windows 2003 standard server running active
directory/DNS/DHCP. A road warriors connection gets a DHCP assigned address
from the server 2003 [192.168.1.50] but I cannot ping anything in the network.
Here is the connection setup:
# Laptop IKEv2
conn houck-ikev2
left=50.240.105.225
leftsubnet=0.0.0.0/0 # dont restict network access, i.e. internet
leftcert=serverCert.pem
right=%any
rightsourceip=%dhcp
rightcert=houckCert.pem
keyexchange=ikev2
rightauth=pubkey
auto=start
Vernon
------------------------------------------------------------------------------
Comprehensive Server Monitoring with Site24x7.
Monitor 10 servers for $9/Month.
Get alerted through email, SMS, voice calls or mobile push notifications.
Take corrective actions from your mobile device.
http://p.sf.net/sfu/Zoho
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
