[Shorewall-users] forwarding ppp - ppp

Jerry Vonau jvonau at shaw.ca
Wed Dec 10 08:35:08 PST 2003


Hi:

Pings are disallowed by default.
Have you gone over this page:
http://www.shorewall.net/ping.html

Your really need to post the information listed on
http://www.shorewall.net/support.htm

To help us, help you, with out guessing what you have
in the other config files and to rule out other issues such
as routing.

Jerry Vonau



----- Original Message -----
From: "Marius Stan" <mstan at asesoft.ro>
To: <shorewall-users at lists.shorewall.net>
Sent: Wednesday, December 10, 2003 07:49
Subject: [Shorewall-users] forwarding ppp - ppp


Hello,

I guess this is an easy one, but I can't figure it out:

I have setup a pptp VPN server on the firewall, with the vnp users in
a
separate zone as in
http://www.shorewall.net/PPTP.htm#ServerFW,  "Remote Users in a
Separate
Zone" guide.

I don't want to give the vpn users access to my loc, net or dmz zones,
I
just want them to be able to see each other.
If I try to ping one from another I get this:

Dec 10 11:52:28 gateway kernel: Shorewall:FORWARD:REJECT:IN=ppp0
OUT=ppp1
SRC=192.168.97.234 DST=192.168.97.236 LEN=60 TOS=0x00 PREC=0x00
TTL=127
ID=11705 PROTO=ICMP TYPE=8 CODE=0 ID=768 SEQ=2560

Where should I put the rule to enable the above traffic ? And what is
the rule I need ?

I already placed the rule
vpn             vpn             ACCEPT
in my policy file, but with no results.

Thanks,
Marius
_______________________________________________
Shorewall-users mailing list
Post: Shorewall-users at lists.shorewall.net
Subscribe/Unsubscribe:
https://lists.shorewall.net/mailman/listinfo/shorewall-users
Support: http://www.shorewall.net/support.htm
FAQ: http://www.shorewall.net/FAQ.htm



More information about the Shorewall-users mailing list