After upgrading from Zentyal 3.0 to 3.2 I was no longer able to access my advertised networks in OpenVPN. I was still able to access Zentyal administration. It seemed that port 80 was not being delivered to Squid.
On checking the Firewall log I found that port 3128 was being dropped everytime I tried to access anything on port 80 externally on OpenVPN.
I found this rule in IPTABLE.
-A premodules ! -d 192.168.160.1/32 -i tap0 -p tcp -m tcp --dport 80 -j REDIRECT --to-ports 3128
Because of the bang I assume this is blocking all my access from the OpenVPN port 80 from reaching Squid.
In firewall.postservice I put:
iptables -I INPUT -p TCP -i tap0 --dport 3128 -m state --state NEW -j ACCEPT
This gave me my access back.
However, I am sure this is not the accepted way to accomplish this.
If you all would please teach me some better ways I would appreciate it.
Thanks.
Topic: No access to OpenVPN advertised subnets after upgrading from Zentyal 3.0 to 3.2 (Read 1492 times)