ok, got a little problem. i (openvpn sevrer) directly connected to the internet, but i have a subnet under me. in order to get the tunnels workin, i have to run the script firewall.sh that comes with openvpn, and i have to knowck down the firewall (yast), but i lose connection to internet from my internal machines. if i activate the firewall (yast) then the tunnel doesnt work. anyone knows a sollution to get them both working? �Tienes alguna duda en tu VIDA? www.howstuffworks.comIf You Ask Me A Fu**in' Question You'd Better Be Prepared For The AnswerNoel GallagherOasis Frontman17/10/02 __________________________________ Celebrate Yahoo!'s 10th Birthday! Yahoo! Netrospective: 100 Moments of the Web http://birthday.yahoo.com/netrospective/
On Wed, 9 Mar 2005 07:40, Antonio Montani Jimenez wrote:
ok, got a little problem. i (openvpn sevrer) directly connected to the internet, but i have a subnet under me. in order to get the tunnels workin, i have to run the script firewall.sh that comes with openvpn, and i have to knowck down the firewall (yast), but i lose connection to internet from my internal machines. if i activate the firewall (yast) then the tunnel doesnt work. anyone knows a sollution to get them both working?
Scrap the script and do it in the SuSEfirewall. You will have to add your details to FW_SERVICES_EXT_UDP FW_FORWARD I have added the following rules in SuSEfirewall2-custom fw_custom_before_denyall() { iptables -A INPUT -i tun+ -j ACCEPT iptables -A FORWARD -i tun+ -j ACCEPT true } -- Regards, Graham Smith ---------------------------------------------------------
participants (2)
-
Antonio Montani Jimenez
-
Graham Smith