« previous next »
Pages: [1]

Author Topic: Firewall problems  (Read 2087 times)

Drewsa

  • Zen Apprentice
  • *
  • Posts: 5
  • Karma: +0/-0
    • View Profile
Firewall problems
« on: July 22, 2008, 03:01:17 pm »
Hi Guys

I'm having a problem opening the OpenVPN port in the firewall, in order for VPN clients (users) to connect to the VPN server (Ebox machine). The port is 1194 UDP and I have added it to all the packet filter rules found in the Ebox GUI, as well as created a service and set up NAT from my router - however when I use nmap on the network, it doesn't find the port open and if I try connect to the port from within the network, it doesn't connect.

I'm using Ebox 0.11.101 on Gutsy.

Can anyone help with this or perhaps tell me how to manually add the firewall rules on the server, via a cli?

Regards,
Logged

javi

  • Zen Hero
  • *****
  • Posts: 1042
  • Karma: +0/-0
    • View Profile
Re: Firewall problems
« Reply #1 on: July 22, 2008, 03:22:15 pm »
0.11.101 on Gutsy?

I'm sorry  to say we don't support that version in Gutsy, you should use hardy :(

Anyway, are you using you configuring the vpn server manually or with eBox?

You should add the firewall rule to "Filtering rules from external networks to eBox"
Logged

Drewsa

  • Zen Apprentice
  • *
  • Posts: 5
  • Karma: +0/-0
    • View Profile
Re: Firewall problems
« Reply #2 on: July 22, 2008, 03:37:08 pm »
Sorry, my mistake - it is on Hardy, i downloaded the ISO from the ebox site.

I'm configuring the server manually, and I have added the rule to "Filtering rules from external networks to eBox". :-(

Anything else?

Thanks!
Logged

javi

  • Zen Hero
  • *****
  • Posts: 1042
  • Karma: +0/-0
    • View Profile
Re: Firewall problems
« Reply #3 on: July 23, 2008, 12:12:40 pm »
Two things:

If you try to connect from your local network you will need to add a rule to "Filtering rules from internal networks to eBox".

You can temporarly disable the firewall to check if it connects by running:

iptables -I INPUT -j ACCEPT


Logged

Drewsa

  • Zen Apprentice
  • *
  • Posts: 5
  • Karma: +0/-0
    • View Profile
Re: Firewall problems
« Reply #4 on: July 23, 2008, 08:44:14 pm »
How do I enable it again though? Restart the box?

Sorry, I'm abit of an IPTables newb so any doc's or help is appreciated!

I have also added the rules to "Filtering rules from internal networks to eBox", but to no avail. Is there any way to check the IPTables via command line - to see if they are being enabled through the firewall rules GUI?
Logged

javi

  • Zen Hero
  • *****
  • Posts: 1042
  • Karma: +0/-0
    • View Profile
Re: Firewall problems
« Reply #5 on: July 24, 2008, 12:44:53 pm »
You can restart the firewall from console by running:

Code: [Select]
/etc/init.d/ebox firewall restart

You can check the actual firewall rules by running:

Code: [Select]
iptables -L -n -v

Feel free to post the output of the iptables rules and ask us to check if it actually has a rule you expect :)
Logged
Pages: [1]
« previous next »