Hmm, client just installed on Ubuntu 10.04 and found that the tunnel would come up but they couldn't ping the other side as no routes are set.
I poked around for a bit and after implementing the info below AND disabling the UFW firewall, I am able to ping the server on the other side of the tunnel. So what other specific changes need to be made with UFW to allow this to work with UFW operational? Googling has turned up squat as has searching my local copy of the list archives. On 19 Oct 2010 at 13:11, Frank Høvin wrote: > * Disable IP spoof-security: > in /etc/sysctl.d/10-network-security.conf both values must be set to 0: > # Turn on Source Address Verification in all interfaces to > # prevent some spoofing attacks. > net.ipv4.conf.default.rp_filter=0 > net.ipv4.conf.all.rp_filter=0 > > * This is not activated immediately, reboot or run the following commands: > sysctl net.ipv4.conf.default.rp_filter=0 > sysctl net.ipv4.conf.all.rp_filter=0 > > If you really really want to compile it yourself, make sure you install > the dev-packages of openssl. > > That should do it. > > Regards, > Ger Apeldoorn > > > > > > > _______________________________________________ > vpn-help mailing list > [email protected] > http://lists.shrew.net/mailman/listinfo/vpn-help > > > -- Harondel J. Sibble Sibble Computer Consulting Creating Solutions for the small and medium business computer user. [email protected] (use pgp keyid 0x3AD5C11D) http://www.pdscc.com Blog: http://www.pdscc.com/blog (604) 739-3709 (voice) _______________________________________________ vpn-help mailing list [email protected] http://lists.shrew.net/mailman/listinfo/vpn-help
