Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages: [1]
1
Installation and Upgrades / Re: Zentyal Server 3.2 - Configuring the VPN L2TP/IPSec PSK Server
« on: December 10, 2013, 08:19:47 am »
Thanks jjm1982
I've managed to fix my L2TP issues, and reported the bug and solution here: http://trac.zentyal.org/ticket/7788 also I've installed PPTP server and use it until there is more stable release.
Here is a howto for those who need PPTP: http://www.vionblog.com/zentyal-3-2-pptp-server/
Regards,
Nikola
I've managed to fix my L2TP issues, and reported the bug and solution here: http://trac.zentyal.org/ticket/7788 also I've installed PPTP server and use it until there is more stable release.
Here is a howto for those who need PPTP: http://www.vionblog.com/zentyal-3-2-pptp-server/
Regards,
Nikola
2
Installation and Upgrades / [SOLVED]Zentyal 3.2.4 L2TP only one user can access the network
« on: November 30, 2013, 08:52:54 pm »
Hello,
I've configured my L2TP server but i can only connect one user can access the network. There can be multiple users connected but only the first can access from VPN -> LAN. I can access LAN -> VPN Clients
My config:
Tunnel IP: 192.168.0.191
Range: 192.168.0.161-192.168.0.179
So far I've figured this out.
in: /usr/share/perl5/EBox/IPsec/FirewallHelper.pm there are methods inputNoSpoof and forwardNoSpoof which should add the IP's into the firewall as they connect, but while i connect multiple clients 192.168.0.161 ppp1, 192.168.0.162 ppp2, 192.168.0.163 ppp3 I get only 192.168.0.161 in the logs on every connection.
Every time i make a conection i get this in my logs:
After i manually add the rules into the firewall for the other connections i can browse the network:
Anyone has idea how to continue with this? PPTP is not available in 3.2 and L2TP is not working and i con't want to conplicate things by installing software for OpenVPN.
EDIT:
I've managed to solve my problem and reported bug: http://trac.zentyal.org/ticket/7788
Regards,
Nikola
I've configured my L2TP server but i can only connect one user can access the network. There can be multiple users connected but only the first can access from VPN -> LAN. I can access LAN -> VPN Clients
My config:
Tunnel IP: 192.168.0.191
Range: 192.168.0.161-192.168.0.179
So far I've figured this out.
in: /usr/share/perl5/EBox/IPsec/FirewallHelper.pm there are methods inputNoSpoof and forwardNoSpoof which should add the IP's into the firewall as they connect, but while i connect multiple clients 192.168.0.161 ppp1, 192.168.0.162 ppp2, 192.168.0.163 ppp3 I get only 192.168.0.161 in the logs on every connection.
Every time i make a conection i get this in my logs:
Code: [Select]
2013/11/30 20:34:31 DEBUG> Sudo.pm:180 EBox::Sudo::_root - /usr/share/zentyal-firewall/dhcp-firewall.pl (pid: 8260) - set -e
/sbin/iptables -t filter -A fnospoofmodules -s 192.168.0.161/32 -i ppp1 -j faccept
/sbin/iptables -t filter -A inospoofmodules -s 192.168.0.161/32 -i ppp1 -j iaccept
/sbin/iptables -t filter -A fmodules -i ppp+ -p all -m state --state NEW,ESTABLISHED,RELATED -j faccept
/sbin/iptables -t filter -A iexternalmodules -m policy --dir in --pol ipsec -p udp --dport 1701 -j iaccept
After i manually add the rules into the firewall for the other connections i can browse the network:
Code: [Select]
/sbin/iptables -t filter -A fnospoofmodules -s 192.168.0.162/32 -i ppp2 -j faccept
/sbin/iptables -t filter -A inospoofmodules -s 192.168.0.162/32 -i ppp2 -j iaccept
/sbin/iptables -t filter -A fnospoofmodules -s 192.168.0.163/32 -i ppp3 -j faccept
/sbin/iptables -t filter -A inospoofmodules -s 192.168.0.163/32 -i ppp3 -j iaccept
Anyone has idea how to continue with this? PPTP is not available in 3.2 and L2TP is not working and i con't want to conplicate things by installing software for OpenVPN.
EDIT:
I've managed to solve my problem and reported bug: http://trac.zentyal.org/ticket/7788
Regards,
Nikola
3
Installation and Upgrades / Re: Zentyal Server 3.2 - Configuring the VPN L2TP/IPSec PSK Server
« on: November 30, 2013, 03:56:50 pm »
I've noticed that it's a firewall issue.
When i connect the second client i CAN'T ping anything from the client, but i can access the client services from the local network.
The strange thing is that the first connected client can access the local network, but all other connected clients are blocked by the firewall they can't access the local network, but PC's from the local network can access their services.
I've noticed that only the first ip is in inospoofmodules and fnospoofmodules chains when other clients are connected their IP is not in the chains so the problem is in the firewall not in the configuration.
Anyone can help with this?
Regards
When i connect the second client i CAN'T ping anything from the client, but i can access the client services from the local network.
The strange thing is that the first connected client can access the local network, but all other connected clients are blocked by the firewall they can't access the local network, but PC's from the local network can access their services.
I've noticed that only the first ip is in inospoofmodules and fnospoofmodules chains when other clients are connected their IP is not in the chains so the problem is in the firewall not in the configuration.
Anyone can help with this?
Regards
4
Installation and Upgrades / Re: Zentyal Server 3.2 - Configuring the VPN L2TP/IPSec PSK Server
« on: November 28, 2013, 06:13:42 pm »
Hello,
I also have problem with L2TP PSK.
So far I've figure out that only the first client can browse/ping the network. I can connect multiple clients but ONLY THE FIRST can communicate inside the network.
Have you managed to solve this problem?
Regards,
Nikola
I also have problem with L2TP PSK.
So far I've figure out that only the first client can browse/ping the network. I can connect multiple clients but ONLY THE FIRST can communicate inside the network.
Have you managed to solve this problem?
Regards,
Nikola
Pages: [1]