It is currently 24.03.2017 14:13


All times are UTC




Post new topic Reply to topic  [ 2 posts ] 
Author Message
 Post subject: iptables problem
PostPosted: 23.04.2010 13:27 
DES
DES

Joined: 23.04.2010 13:20
Posts: 1
I have a VPN connection that I have using a static IP address (ccd file). I have created some iptables in rc.firewall.local that dont seem to work no matter what I do. I am trying to use CUSTOMFORWARD on the tun0 interface. 10.158.155.241 is the VPN connection. I have even tried moving the call to the OVPN control program to the bottom of the rule set with no luck.
EX
Code:
iptables -A CUSTOMINPUT -s 10.158.155.241 -i tun0 -p tcp -d 192.168.x.z -m multiport --dports 1386,53 -j ACCEPT
   iptables -A CUSTOMINPUT -s 10.158.155.241 -i tun0 -p udp -d 192.168.x.z -m multiport --dports 1386,53 -j ACCEPT

   iptables -A CUSTOMINPUT -s 10.158.155.241 -i tun0 -p tcp -d 192.168.x.y -m multiport --dports 1386,53 -j ACCEPT
   iptables -A CUSTOMINPUT -s 10.158.155.241 -i tun0 -p udp -d 192.168.x.y -m multiport --dports 1386,53 -j ACCEPT

   iptables -A CUSTOMINPUT -s 10.158.155.241 -i tun0 -p tcp -d 192.168.x.w --dport 137 -j ACCEPT
   
   iptables -A CUSTOMINPUT -s 10.158.155.241 -i tun0 -p tcp -d 192.168.x.v -m multiport --dports 3690,443,80 -j LOG --log-prefix "Employee_Working"
   iptables -A CUSTOMINPUT -s 10.158.155.241 -i tun0 -p udp -d 192.168.x.v -m multiport --dports 3690,443,80 -j LOG --log-prefix "Employee_Working"
   
   iptables -A CUSTOMINPUT -s 10.158.155.241 -i tun0 -p tcp -d 192.168.x.v -m multiport --dports 3690,443,80 -j ACCEPT
   iptables -A CUSTOMINPUT -s 10.158.155.241 -i tun0 -p udp -d 192.168.x.v -m multiport --dports 3690,443,80 -j ACCEPT

   iptables -A CUSTOMINPUT -s 10.158.155.241 -i tun0 -p all -j LOG --log-prefix "Employee_Denied"
   iptables -A CUSTOMINPUT -s 10.158.155.241 -i tun0 -p all -j DROP

        #Added for zerina start - BEGIN
   /usr/local/bin/openvpnctrl --create-chains-and-rules
   #Added for zerina start - END

I did a listing of iptables rules and noticed OVPNFORWARD from any to any and OVPNINPUT from any to any, is this my problem? If so how do I correct it? Any help would be greatly apreciated. Thanks in advance!


Top
Offline Profile  
Reply with quote  
 Post subject: iptables problem
PostPosted: 09.03.2016 00:28 
DES
DES
User avatar

Joined: 06.03.2016 06:21
Posts: 8
Location: Russia
From what I can see the kernel side is there, just not the tiny bit that lets iptables talk to it.

___

XRumer 12.0.16 + SocPlugin: the BEST program for Facebook / VK / Forums / Blogs promotion!
Only TODAY: -30% DISCOUNT for XRumer!


Top
Offline Profile  
Reply with quote  
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 2 posts ]  Moderator: Moderators

All times are UTC


Who is online

Users browsing this forum: Google [Bot] and 2 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group
Theme created StylerBB.net