2016-04-21 19:40 GMT+02:00 Tom Eastep <[email protected]>:
> On 04/21/2016 09:53 AM, Eduard Vidal i Tulsà wrote:
> > Hello, i have this scheme
> >
> >
> > Internet
> > |
> > ----------------------
> > | adsl router |
> > |ip:192.168.1.1| ---- [printer in usb port]
> > ----------------------
> > |
> > -------------------------------------
> > |firewall wlan0 to router |
> > | eth0 localnetwork|
> > | tun0 openvpn |
> > -------------------------------------
> > |
> > ---------------------------------------
> > | few local scales in shop |
> > ---------------------------------------
> > I tagged wlan0 has net
> > eth0 has local
> > and tun0 has vpn
> > in /etc/interfaces like that:
> > #cat interfaces|grep -v \#
> > ?FORMAT 2
> > net wlan0
> > dhcp,tcpflags,nosmurfs,routefilter,logmartians,sourceroute=0
> > vpn tun0
> > dhcp,tcpflags,nosmurfs,routefilter,logmartians,sourceroute=0
> > loc eth0
> > dhcp,tcpflags,nosmurfs,routefilter,logmartians,sourceroute=0
> >
> >
> >
> > Sorry, but i can't understand why 192.168.1.1 is not in the net network.
> > If is outside firewall
>
> Yes -- I intended to remove that comment but forgot :-\
>
> >
> > I try to masq vpn netowrk like localnetwork iin masq file:
> > #cat masq |grep -v \#
> > wlan0 10.1.3.0/24 <http://10.1.3.0/24>, \
> > 10.0.8.0/24 <http://10.0.8.0/24>
>
> Which is what I suggested at the end of my email.
>
> >
> > Now a nmap from a remote location say is not filtered. Good :D
> > #nmap 10.0.8.103
> >
> > Starting Nmap 7.12 ( https://nmap.org ) at 2016-04-21 16:43 UTC
> > Nmap scan report for 10.0.8.103
> > Host is up (0.12s latency).
> > Not shown: 995 closed ports
> > PORT STATE SERVICE
> > 22/tcp open ssh
> > 53/tcp open domain
> > 80/tcp open http
> > 6000/tcp open X11
> > 8888/tcp open sun-answerbook
> >
> > but still can no open web page in all of two ports i set up for acces to
> > on router.
> > I add this line in rules:
> > DNAT vpn net:192.168.1.1:80
> > <http://192.168.1.1:80> tcp 8888
> >
> >
> > I really apreciate all your help :D
> >
>
> Please:
>
> - shorewall reset
> y just do it and i can entry directy to router :D very ty :D, i just try
> shorewall restart ...
> - Try to open the web interface to the router through the VPN i open
> router across putty tunnel without problems to
> - shorewall dump > dump
>
> Send me the 'dump' file.
>
> Thanks,
> -Tom
>
>
> --
> Tom Eastep \ When I die, I want to go like my Grandfather who
> Shoreline, \ died peacefully in his sleep. Not screaming like
> Washington, USA \ all of the passengers in his car
> http://shorewall.net \________________________________________________
>
>
>
> ------------------------------------------------------------------------------
> Find and fix application performance issues faster with Applications
> Manager
> Applications Manager provides deep performance insights into multiple
> tiers of
> your business applications. It resolves application problems quickly and
> reduces your MTTR. Get your free trial!
> https://ad.doubleclick.net/ddm/clk/302982198;130105516;z
> _______________________________________________
> Shorewall-users mailing list
> [email protected]
> https://lists.sourceforge.net/lists/listinfo/shorewall-users
>
>
--
------------------------------------------------------------------------------
Find and fix application performance issues faster with Applications Manager
Applications Manager provides deep performance insights into multiple tiers of
your business applications. It resolves application problems quickly and
reduces your MTTR. Get your free trial!
https://ad.doubleclick.net/ddm/clk/302982198;130105516;z
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
