Networking :: VPN Client Exists Which Will Connect To A Sonicwall Firewall?
Feb 3, 2011Linux VPN client exists which will connect to a Sonicwall firewall?
View 1 Replies
ADVERTISEMENT
Fedora Networking :: Networkmanager VPN Client Setup For Sonicwall VPN
Aug 14, 2009I'm looking for some information on setting up a VPN client through Networkmanager in Gnome. My company uses a Sonicwall VPN server, and I'm having trouble getting my F11 laptop to connect. I've tried OpenS/WAN with no luck, and stumbled across Networkmanager's VPN setup. I can choose Cisco Compatible VPN (vpnc) which says it's compatible with Sonicwall IPSec-based VPNs. Is there a how-to I can check out, or has someone else got this setup to work?
View 2 Replies View RelatedSecurity :: SonicWall Firewall Or Appliance Open Ports NMAP?
Mar 17, 2011I am trying to understand why when running nmap against a SonicWALL firewall at a remote location, the SonicWall firewall is saying that most of its 65535 ports are open? I know this cant be correct and remember reading about how some of these network appliances are setup this way to thwart off attacks.
View 7 Replies View RelatedNetworking :: Squid And Firewall Settings - Restrict To Local Client?
Mar 3, 2011i have configured the squid for my lan. My lan has three redhat 5.3 web servers. Now by using proxy server, i wish to give access to external clients for my web server and restrict to local client, accessing wan through port 80
View 2 Replies View RelatedNetworking :: Firewall Cannot Connect Beyond ISP Gateway
May 17, 2009Our firewall (debian) currently has 4 public ip addresses (eth0 1.2.3.4, eth0:0 1.2.3.5, eth0:1 1.2.3.8, eth0:2 1.2.3.9) and 3 internal subnets (eth1 10.1.x.x, eth1:0 10.2.x.x, eth2 10.7.x.x). We are experiencing the following two problems which I believe have the same root cause. 1) The firewall cannot access beyond the isp gateway (1.2.3.1). 2) From externally, we can ping eth0 with no trouble, however, pinging the eth0:0, eth0:1 and eth0:2 interfaces have results similar to the following:
Code:
PING 1.2.3.8 (1.2.3.8) 56(84) bytes of data.
64 bytes from 1.2.3.8: icmp_seq=2 ttl=57 time=59.0 ms
64 bytes from 1.2.3.8: icmp_seq=2 ttl=57 time=63.0 ms (DUP!)
64 bytes from 1.2.3.8: icmp_seq=13 ttl=57 time=59.3 ms
64 bytes from 1.2.3.8: icmp_seq=13 ttl=57 time=63.0 ms (DUP!)
64 bytes from 1.2.3.8: icmp_seq=24 ttl=57 time=62.0 ms
64 bytes from 1.2.3.8: icmp_seq=24 ttl=57 time=65.6 ms (DUP!)
I get the feeling that I'm missing something obvious, especially since all traffic on the internal subnets can access externally as normal.
Fedora Networking :: Connect The Network Where The Openvpn Client Is,throught The Computer With The Client To The Other Network?
May 20, 2009I have the following problem:I have to networks in remote places.I have an opnvpn client in one network that connects to the the router (openvpn server).My question is,can i connect the network where the openvpn client is,throught the computer with the client to the other network.If yes,how? (please make it an idiot proof anwser because i have limited knowledge about iptables). I was thinking like forwarding (the router in the network with the openvpn client is also firewalling with iptables) the request of the ip class of the openvpn network to the computer with the client,which masquarades the interface
View 2 Replies View RelatedUbuntu Networking :: Using Endian Firewall In Order To Connect Two LANs
Feb 23, 2010I am using Endian firewall in order to connect two LANs but I am getting many problems and I don't know how to solve them since there is no much information about this software on the internet. Do yuo know good webpage about this powerful program?
View 5 Replies View RelatedFedora Networking :: OpenVPN Timeout - Error From NetworkManager - Connect To My Router/firewall
Mar 13, 2011I'm getting a timeout error from NetworkManager when attempting to connect to my router/firewall.
Excerpt from /var/log/messages attached.
CentOS 5 Networking :: When I Change Dom0's Firewall Setup, The DomU Will Fail To Connect To Internet?
May 17, 2010I'm using virtual network (NAT network) for my domU.When I change dom0's firewall setup, the domU will fail to connect to Internet anymore.So far, the only way to bring the network back is reboot dom0 !I try to restart service network and libvirtd on dom0 ... it doesn't work.How can I bring the domU network back without reboot dom0 ?
View 1 Replies View RelatedUbuntu Networking :: Ssh Client Wont Connect?
Sep 10, 2010Ok so i have a server in which i have setup dyndns setup so that i can use an address such as example.com to connect to my server. The server has openssh installed and it is configured properly.
What I can do:
Code:
Connect to server (locally) from linux terminal
Connect to server (locally) from windows putty client
Connect to server (Over Internet) from windows putty client
What I can't do
[Code]...
Networking :: Connect To The Client Using The Already Existing Ssh Connection?
Mar 22, 2011I was wondering if there was a way to connect over ssh "backwards". For example, lets say there's a client connected to example.com via ssh from behind a router. Well you wouldn't be able to ssh to that client unless the proper ports were forwarded on the router right? So I'm wondering if there would be a way to connect to example.com through ssh then from there connect to the client using the already existing ssh connection.
View 4 Replies View RelatedNetworking :: VPN Client Should Not Connect To Special Server
Feb 16, 2009in my office all users connect to internet via VPN.in our office there is one special server that we want when users connected via VPN,users can not connect to the special server and when users are not connect to via VPN can connect to that server.
View 3 Replies View RelatedUbuntu Networking :: Connect To Company's VPN Using The Cisco VPN Client?
Dec 3, 2010When I try to connect to my company's VPN using the Cisco VPN client, I get a kernel panic. Please don't suggest I should Cisco's client, it only works with Kernels older than 2.6.24 (I have 2.6.35).
So I use vpnc. The error message is:
Quote:
$ sudo vpnc
[sudo] password for phirt:
Enter password for user@group@fubar.net:
received notice of type (ISAKMP_N_NO_PROPOSAL_CHOSEN)(14), giving up
vpnc: quick mode response rejected: (ISAKMP_N_INVALID_MESSAGE_ID)(9)
this means the concentrator did not like what we had to offer.
Possible reasons are:
[Code]...
Networking :: Use FTP Client (for Example Ncftp) To Connect In Active Mode?
Nov 19, 2010I want to use FTP client (for example ncftp) to connect in active mode. I have firewall (iptables) on my laptop and most of time I am behind rooter. With outgoing packets and with passive mode all is working fine.But some sites accept only active mode.I could open some port range in firewall and in rooter for active data packets, but I don't know how to solve security issues.So how should I correctly manage active ftp connection?
How can I set data port range when opening active connection with ncftp (or maybe another ftp client)?How can I limit that incoming connections to that ports range is accepted only by ncftp or else dropped?
Ubuntu Servers :: 11.04 LTSP Connect Client Hard Drive - Register In The Fstab On The Client?
May 26, 2011I have configured server ubuntu 11.04. Everything works fine, but there is a need for some clients to connect local hard drive. What should I do? How and what modules are added to the ltsp-image? How to register in the fstab on the client? Maybe I'm going the wrong way?
View 1 Replies View RelatedUbuntu Networking :: How To Connect To UWF's EDesktop Via Terminal Server Client
Jan 5, 2010More for my own posterity than anything else, I thought I'd document here the way to get to eDesktop through linux (debian, ubuntu) at the University of West Florida (UWF), since they appear to only support Windows through their documentation on the University web site, and the link through Argus (the secure web site) doesn't work in Linux. This is sometimes needed to use the University resources (libraries and computer programs) from remote locations, and otherwise a google search is fruitless. I had to have a guy in the computer science department show me how to do it.This may apply for other Universities with similar setups.
View 1 Replies View RelatedUbuntu Networking :: NX Client - Ssh: Connect To Host Port 22: Connection?
Jul 29, 2010I have a Windows machine on which NX Client has been installed. I wanted to test if I could access my Ubuntu box. The Ubuntu Box has NX Server, Node and Client installed. When I try to log in from the Windows machine using NX Client with my Ubuntu username and password I get an error connection refused.
The following service is running: OpenBSD Secure Shell server sshd How can I resolve the issue?
Server :: Cannot Use 'ls' Outside Firewall Client Hangs
Jan 7, 2010I have vsFTPd running on my server. If I connect via 127.0.0.1, then all is well and I can use the "ls" command to get a directory listing. However when trying this remotely, the FTP client hangs and I do not get a directory listing.
View 4 Replies View RelatedUbuntu Networking :: Connect VPN Client To Safe At Office 500 Using Pre-shared Keys?
Feb 4, 2010has anyone been able to connect a Linux VPN client to a safe@office 500 using pre-shared keys?From windows, I can establish a IPSec/L2TP(also PSK) connection with no issues(No third party software. Just created a new connection in XP).I have tried using StrongSwan and xl2tpd on Karmic without success.PPPd never gets launched. To me it seems like this should work given I can create a vpn connection directly from WinXP without installing any checkpoint clients.
View 3 Replies View RelatedNetworking :: Setup Firewall / Sys1 Is Not Connected To Firewall For Testing Purpose?
May 18, 2010I am learning to setup firewall in my home for that i have selected four system(sys1,sys2....sys4) for testing .I have configured sys2 to act as a firewall with two NIC. sys3 and sys4 are inside the firewall . sys1 is not connected to firewall for testing purpose.
the IP assignments are follows :
sys1 : ( fedora, not connected to firewall i am thinking, But i am not sure )
IP : 192.168.2.1 ,
gateway : blank
dns1 : blank
dns2 : blank
sys2 firewall ,IPTABLES )
code....
what happened is that sys1(not connected to firewall) can ssh to sys4(connected,inside firewall),since the rules are written not to ssh form sys1 to sys4..
then I came to know whatever the request I give, It directly goes as sys1 --> sys4. Not as sys1-----> sys2(firewall)---> sys4 .and the firewall is not filtering and processing anything for both inbound and outbound (i think it's my mistake some where). the requests are directly going inside without firewall.
Ubuntu Networking :: Make Connect To Freenx Server From Windows Using Nomachine Client?
Feb 24, 2010I am not exactly newbie with GNU/Linux, but definitely new to SSH/NX stuffs. I followed the below tutorials for installing FreeNX so that I can access my desktop like TeamViewer in windows.
https:[url]....
https:[url].....
But I don't see the folder NX like the one mentioned here.Then edit the file /usr/NX/etc/server.cfg
I don't see a folder called NX to proceed. Also when I use nomachine client to connect from Windows, it couldn't connect and I get the below errors.
nxssh: <host-name>: no address associated with name.
how to make connect to freenx server from windows using nomachine client?
General :: Writing Files From NFS Client To Server Behind Firewall ?
Jan 25, 2010For some time now, I'm having some problems with configuring an NFSv4 server to let it work with a firewall. I've already searched to web, but I was unable to find a solution that works for me.
The situation is as follows:
I'm trying to connect an NFS client to an NFS server that is behind a firewall. I don't have access to this firewall, but I can contact the administrator to open some ports for me. I already did this for opening port 2049.
The result is that the client can read files from the server, but is unable to write files to the server. I believe that for writing an extra RPC-connection needs to be set up. However, the ports on which the RPC-connection is set up, seem to be different for every connection (I verified this using 'netstat -tn').
Clearly, this is a problem since the server is protected by the firewall.
Thus, what I want to do is configure the server in such a way, that it always uses the same server-side port(s) to connect with the writing clients (just like 2049 for reading). I've already tried to configure the /etc/default/nfs-kernel-server and /etc/default/nfs-common files, but that hasn't really worked out yet.
Note: Because I don't like to contact the system admin every day, I hooked up 2 computers (client/server) on which I set up the same configuration (without the firewall). I'd like to see it working on those machines first (that is, 'netstat -tn' showing the correct port), before I contact the admin to open some extra ports.
General :: Connecting To A SonicWall VPN From A Machine?
May 16, 2010Is there a SonicWall client for Linux? When I searched around I could only find answers several years old.
View 2 Replies View RelatedGeneral :: Backup / Setup A Second VPN Tunnel On A Fallback Gateway / Firewall On The Client Side
Mar 1, 2011I've set up a Lan-to-Lan (routed) OpenVPN tunnel. For redundancy I want to set up a second VPN tunnel on a fallback gateway/firewall on the client side. Currently, both sides (server/client) know how to route packets across each others physical LAN. So no NAT is used. When the primary gateway (fw1) is connected to the VPN server all traffic runs via the fw1 tunnel. Than when the secondary gateway (fw2) connects to the VPN server and fw1 is still connected all traffic for fw1 will be delivered to fw2 and effectively destroying traffic intended for fw1. This is of course no problem if I first shutdown (fence) fw1, than set up fw2 to use the gateway IP address from fw1 and set up the VPN tunnel to the VPN server. Effectively replacing fw1 with fw2 on the client side.
However, I can't seem to find a decent howto.
I am also exploring the possibility to let both tunnels active and let OpenVPN (or another tool) decide how to route packets back and forth the different LANs. A virtual IP between two gateway's both running a VPN or something similar. This would be the preferred method of course. However, I don't know how to tackle this one but I'm pretty sure there are people out there who are happy to share their 2 cents.
Ubuntu Networking :: Use NFS To Connect To Windows Partitions On Server From Ubuntu Client?
Sep 10, 2010I'm running Lucid on a laptop client and a desktop server. The server has windows partitions that I'd like to connect to from the client using nfs over a wireless link on my home network. Is this possible? (I'm currently using samba but find it slow and stalls shutdowns on the client.)I've successfully connected to ubuntu partitions on the server via nfs, but most of the data is on the windows partitions, and must remain there.
View 4 Replies View RelatedNetworking :: PPTP Client Fails To Connect To Microsoft ISA PPTP Server?
Sep 17, 2009I'm trying to connect to a Microsoft ISA PPTP server from my Linux box. The box I'm connecting from is itself a router. I have no problem connecting a Windows XP machine to the VPN via this machine. This is fine, but I would rather connect via the Linux machine, giving me far more advanced routing options (i.e. no to send every packet from the XP box completely unnecessarily via the PPTP tunnel). The Linux router is running Debian Lenny.
I've checked iptables. There were initially some issues. I've fixed those.
Invoking pppd from the console, I can see that authentication succeeds, but then some negotiation goes wrong and the server terminates the connection. Here's the output from pppd, with the more sensitive stuff removed:
Code:
<hostname>:~# pppd call <peer> nodetach debug
using channel 19
Using interface ppp0
Connect: ppp0 <--> /dev/pts/2
sent [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0xe3e45f75> <pcomp> <accomp>]
code....
Networking :: Connecting Debian Client To Voyager Client Via Crossover Cable?
Jan 6, 2011trying to create a "local network" by directly connecting an IBM Thinkpad with Debian Linux installed on it to an Alix computer running Voyager Linux. I'm following a "how to" I found to create a music server, hence the requirement. My issue is I can't get a static IP address to be configured on the Debian machine.I've trawled the net and have found the instructions about editing the /etc/network/interfaces and have tried to do this. First I tried to get DHCP working so I could connect the Debian machine to the net and this proved successful. I edited the interfaces file to look as follows:
# The loopback network interface
auto lo
iface lo inet loopback
auto eth0
iface eth0 inet dhcp
Then I tried adding a static IP address to the machine. As this is a network purely between two machines I made up the IP addres and used 192.168.0.1 and used a NetMask calculator to give me a NetMask of 255.255.255.254 (I told the calculator there would be 2 machines on the network). I then edited the interfaces file as follows:
# The loopback network interface
auto lo
iface lo inet loopback
[code]....
I re-booted the machine (ifdown eth0 followed by ifup eth0 keeps saying that eth0 hasn't been configured - a problem there that I don't understand), but during boot up time it failed to assign the Static IP address to eth0 and made me go into SU mode. To fix it I simply replaced the interface file with the static IP inputs with the file that had the DHCP entries (I'd made a copy of the DHCP file), and re-started the machine. Everthing came up fine. So the first question is how do I get a static IP address to be assigned to eth0 such that whenever I shut down and restart the machine the static IP address is always loaded?
The second question is around creating the network via the cross over cable. From what I've found via Google, all I should have to do is create a static IP address on the Debian machine and a static IP address on the Voyager machine. Once they're connected by the cross over cable they should see each other. Is that correct, or do I have to do anything else?
OpenSUSE :: FIrewall Setup / Client Computer Cannot See NFS Server When Scanning For Server - OSE 11.2?
Apr 21, 2010I have a small home-office network. On that network I have two linux computers, one is a client the other a server.
On the server I have NFS Server setup and mount some NFS exports on the client computer.
On the server I have the firewall on and here it becomes a little tricky.
Since both the server and the client connect to the router the interface (eth1) is theoretically both an internal & external zone.
The router is commercial grade and therefore has a good firewall on it which is also setup. Therefore the firewall on the server is really more of a backup than a necessity. But that's fine, and by having the server's firewall on 'fail2ban' is able to work which I like to have working so I don't want to just turn off the server firewall even though I have good security from the router.
However, when I turn on the server's firewall, the client computer cannot see the NFS server when scanning for server -- done by: clicking on "Choose" next to "NFS Server Hostname" when adding an NFS share in the NFS Client in YaST. Clearly something is being blocked even though I have both "NFS Client" and "NFS Server Service" allowed in the server firewall. The Firewall config. files for these are below.
The Firewall configuration is pretty much "out of the box". That is I have the services I need opened up for the external zone, the other zones are left at their default which means the internal zone, although not used (i.e.: attached to any interface), is completely open.
The perfect solution I guess would be to setup my client computer to connect through a different NIC (perhaps eth0), make that the "Internal Zone" and therefore allow all traffic through to it while still blocking the server from the external zone. However, I cannot make that physical change to my network for now so I am looking for an in between (non-perfect) solution.
In this case I am guessing that means opening up extra NFS ports to the external zone so I have full NFS functionality. I don't mind this because like I said, the router firewall is the main line of defense anyway.
So, given all of the above could someone tell me what I would need to additionally open up in the server firewall to make the NFS server detection work on the client while the firewall was on. Or, if you have a cleverer/better solution without me changing my physical network that would be great.
Hopefully I have written this in enough detail and clearly enough so that all the parameters are clear but if not, feel free to ask me what you like and I'll try to make it clear.
Code:
## Description: Firewall Configuration for NFS kernel server.
#
# Only the variables TCP, UDP, RPC, IP and BROADCAST are allowed.
# More may be supported in the future.
code....
Ubuntu Security :: Cannot Connect To Port Number / When Firewall Is Enabled
Sep 5, 2010i am using 9.10 karmic. Firewall is enabled. added ports with ufw allow [portnumber], and i still cannot connect to a port number. iv tryed ufw allow ssh/tcp but that does not work. the ports work when i disable the firewall and i dont want to do that.
ufw is available in all new installations of Ubuntu since 8.04 LTS, but is disabled by default. The standard Ubuntu installation has a no open service ports policy, so enabling the firewall by default doesn't gain any extra security in the default installation, but could provide confusion for people new to Ubuntu when new software that is installed does not work because of restrictive firewall rules. As a result, when first adding ufw to Ubuntu it was decided that users must 'opt-in' to using the firewall. In Ubuntu 9.04 and later, you can enable ufw during installation using preseeding. See /usr/share/doc/ufw/README.Debian for details.
Networking :: Ddclient Fails With Uninitialized Value When Cache File Exists?
Mar 8, 2010When I run ddclient with an existing ddclient.cache file I get errors saying "uninitialized value" and the remote IP address does not get updated. This pretty much renders ddclient useless. If I delete the cache file then things work fine and the IP address *does* get updated (if need be). I happen to be running version 3.7.3 of ddclient but I've tried this with ddclient 3.8.0 and the result is exactly the same except that the line number in the error changes to line 2030.
Here's the code at that line number :
Code:
if ($config{$host}{'login'} eq '') {
warning("null login name specified for host %s.", $host);
I'm running ubuntu ( 9.04 I think ) and using zoneedit.com for dynamic dns.
Here's a transcript showing the problem.
root@ruby:/var/cache/ddclient# ddclient
[Code]...
