OpenSUSE Network :: 11.3 Home Firewall With IPSec Support For Cisco VPN

Aug 10, 2010

I have a new install of an OpenSuse 11.3 server and I do not see the IPSec Support option when I use Yast to set that I up. I have the firewall setup with 2 interfaces, one external and one internal and that is all working fine. When I connect via my laptop and connect in via a Cisco IPSec VPN, I get connected, but no traffic goes through.

I did search through the forums, but I don't see any hits related to the issue I'm facing. I installed the ipsec-tools, but I am still not seeing the IPSec Support in the firewall section of Yast that I see noted on many Google Searches. Is there a package or something configuration that is needed to get IPSec Support for VPN setup?

View 2 Replies


ADVERTISEMENT

OpenSUSE Network :: IPsec On Network Layer In The OSI-model?

Jul 18, 2010

I want to know the IPsec-Advantages and Disadvantages that arise because of its location on the network layer in the OSI-Model. I read rfc2401 and rfc4301 specifications to find out the advantages and disadvantages of IPsec being located on the network layer in the OSI-Model (equivalent to Internet layer in the TCP/IP protocol stack). I really could not find enough good reasons for the advantages and disadvantages of IPsec being located on network layer. Here are some of them that I could think of:Advantage: - No application-specific implementation is needed (in comparison to SSL/TLS) - The ability to connect two subnets on the internet (tunneling mode) - Ability to encrypt the traffic between two end-points (transport mode)Disadvantage: - Complex implementation of ipsec itself - High computation performance when AH and ESP both activated - No encryption for the packets to the destination if it is arrived on the subnet on the other side when tunneling mode is activated.

(the network traffic is no more encrypted inside the subnet)What else can you guys add more to these advantages and/or disadvantages? The focus is IP-sec location on the network layer. (it is a kind of comparison to ssl/tls which is upper layer protocol)I would be grateful to any responses.P.S: I hope that this thread has landed in its right place.

View 2 Replies View Related

OpenSUSE Network :: Firewall Logs Are In /var/log/{firewall,warn,messages} - Clutter?

Mar 25, 2011

I suspect this is an initial configuration bug. All firewall logs seem to be going to all
three files. That causes a lot of clutter in the log files, and makes it difficult to see whether there are any serious problems being logged.

View 9 Replies View Related

Networking :: Setup A Firewall In Home Network Environment

May 2, 2010

I am attempting to set up a firewall in my home network environment. the rest of the environment is windows, sorry I am attempting now so bear with me. what I have is a cable modem coming in, then my fedora 11 box with 2 nics, then the wireless router and the rest of the network.

everything works fine until I put the linux box in. If I put the firwall in the firewall sees the internet but the wireless router directly after does not. I am doing something wrong with the dhcp I am guessing. I dont want the firewall to give the address to the network I want the router to. I tried to get the firewall to do it (yum install dhcp leafnode) but it kept saying something didn't work right.

so I figure I will let the cable modem give the firewall an ip and the router give the rest of the network their ip's but how do I get the firewall and router to see each other and allow passthrough?

View 1 Replies View Related

OpenSUSE Network :: 11.2 And Cisco VPN Plugin - Error Status 127

Dec 19, 2009

I just installed a fresh copy of 11.2 I use networkmanager and the cisco vpn plugin (not the cisco client). I create a vpn profile and connect to it. The icon shows a connection has been established, but I have no network connectivity. In the /var/log/NetworkManager file, I see this

Code:
Dec 19 13:28:08 TonyLaptop nm-dispatcher.action: Script '/etc/NetworkManager/dispatcher.d/netcontrol_services' exited with error status 127.

When I sudo vpnc and connect that way, it works fine, it connects and I can pass traffic.
I am using opensuse 11.2x86
firewall is disabled
Gnome

View 3 Replies View Related

OpenSUSE Network :: CISCO Vpnclient - Invalid Module Format

Sep 7, 2010

I am trying to compile the Cisco vpnclient on my Opensuse 11.2 and (after some troubles) I got the module compiled and installed but when I try to load with insmod I got this error

<</etc/init.d/vpnclient_init start
Starting /opt/cisco-vpnclient/bin/vpnclient: insmod: error inserting '/lib/modules/2.6.31.12-0.2-default/CiscoVPN/cisco_ipsec.ko': -1 Invalid module format
Failed (insmod)>>

I am able to use the vpnclient forcing the module with modprobe -f cisco_ipsec but I'd prefer to solve the 'invalid format' original problem. I 'googled' around and it seems related with this warning during vpn_install script "WARNING: Symbol version dump /usr/src/linux-2.6.31.12-0.2/Module.symvers is missing; modules will have no dependencies and modversions." I have these rmps:........

View 2 Replies View Related

Networking :: 7.2 Home Network Gateway Support Fedora / Vista?

Jun 24, 2009

7.2 Home Network Gateway. Has anyone used this gateway and will it support both desktop and laptop I ask this question because I use my desktop at home and when traveling the laptop. The desktop has Fedora and the laptop has cut my tounge out vista.

View 5 Replies View Related

OpenSUSE Network :: Increase Network Security> Personal Firewall?

Apr 7, 2011

I want some advice for making my system more secure. I want deactivate any network connection that is unnecessary. Only my browser and the update ability of zypper should have access to the internet. On windows there are personal firewalls.

How can I block internetaccess for all other programmes on openSUSE?

View 8 Replies View Related

OpenSUSE Network :: Samba And Firewall / Samba Is Not Working When Firewall Is On?

Jul 26, 2010

Samba is working correctly if Susefirewall2 is off. I have added Samba client and Samba Services for extern access but samba is not working when firewall is now on. Which services should I also add ?

View 1 Replies View Related

OpenSUSE Network :: IP Range In Firewall?

Mar 29, 2010

I am trying to add a custom allow rule in the firewall for a range of IPs from 74.201.102.0 - 74.201.103.255, what exactly am I supposed to enter in the source box? I believe I have to add two separate rules for 102 and 103, and I put /24 at the end of both, is this correct to get the whole range of IPs?

View 3 Replies View Related

OpenSUSE Network :: 11.4, CUPS, And The Firewall?

May 25, 2011

1. Under openSUSE 11.2, I allowed printer sharing through CUPS by setting the Firewall to Allow Services of CUPS in the External Zone section. I don't see the CUPS option in the Allow Services of the Firewall under 11.4, any zone. Is my system missing something?2. If I turn off the Firewall, the client computer can see the printers, even get the broadcasted names. If I put port 631 in TCP of the Advanced setting of the External Zone, the client computer can see the printer too, but I know I read somewhere that putting 631 in the External Zone is basically allowing printer requests from the entire internet.

View 2 Replies View Related

OpenSUSE Network :: 11.2 Acting As Router Firewall

Mar 29, 2010

switched recently to 11.2 and it works fine for me as workstation I want to set up a router separating a part of the network and also acting as a firewall/proxy... Configured 2 Ethernet Interfaces, checked Ip forwarding in Yast but it does not forward the packets from the "internal" to the "external" network. Hovewer after I set up my router as default for machines on internal network I can ping the external interface but no adress on external network (particularly the one of the default router) !!! From the router I can reach both networks and the net via default gateway on external. Tried to:

a) switch firewall completely off
b) iptables -P FORWARD ACCEPT
c) masquarading internal adresses to the external network

my interfaces configuration looks like:
eth0 Link encap:Ethernet HWaddr 00:13:D4:E3:A2:7B
inet addr:192.168.1.34 Bcast:192.168.1.255 Mask:255.255.255.0
inet6 addr: fe80::213:d4ff:fee3:a27b/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1

[Code].....

View 4 Replies View Related

OpenSUSE Network :: 11.2 Users - Check Your Firewall

May 19, 2010

We have reason to ask this of you following some strange firewall behaviour - But don't panic If you use openSUSE 11.2 and you think: Your Firewall should be running You are not sure but think it should be check and report back here.

This is how to check:

Go to Yast > Security and Users > Firewall

View 9 Replies View Related

OpenSUSE Network :: Disable Ping On The Firewall?

May 27, 2010

I did a shields up test and it told me that 1056 ports were stealth but that my pc responded to ping and was visible on the net. How do i fix this?

View 4 Replies View Related

OpenSUSE Network :: Allow Openvpn Service In Firewall?

Jul 13, 2010

I can't get my openvpn work if the firewall is on , and I also don't see any option to allow openvpn service in firewall allow service.

View 1 Replies View Related

OpenSUSE Network :: Firewall Setup For OpenMPI - Can't Get To Run

Jul 24, 2010

I'm trying to get OpenMPI (a parallel programming library) working on my home system. I have just two machines on it now, t61 and quad, connected through a router. (Which is also connected to cable modem for internet.) I can ssh between the machnes, mount directories with NFS, etc. However, I just can't get the OpenMPI to run. The OpenMPI message board suggested that the most probable cause is that the firewall is blocking TCP. I don't know how to tell if that's the problem, and can't find any manual for the SuSE firewall, while the various Wikis &c that pop up in a search don't provide any information that addresses my problem.

View 9 Replies View Related

OpenSUSE Network :: Blocking SMTP On Firewall?

Aug 19, 2010

Ok here's my setup :

SuSE 10.0 X86 32 acting as my internet gateway and firewall.

eth0 is my internal interface network 192.168.0.0/24 IP 192.168.0.254 dsl0 is my internet connection and is a single ip PtP connection to my ISP.

My internal network is masquaraded onto the external network.

I run an smtp server on my gateway box that I need to be accessable to both the internal and external networks.

However I want to prevent machines on the internal network from establishing connections to external smtp servers, but still alow them to connect to the smtp server on the gateway to send email.

NOTE I do not want to force attempts to connect to [URL] 25 to be re-directed to my internal server I just want to drop or reject the connection.

The firewall up until now has just been configured through YaST, but am not afraid to edit script files if needed

The reason for doing this it to prevent spambots from being able to send through my isp, I keep my own machines clean but sometimes get asked to disinfect machines for other people (family members etc), where I need to connect to the outside world to get updates/virus defs etc, but don't want them spamming from my network.

View 2 Replies View Related

OpenSUSE Network :: Firewall Rules For Specific OS?

Aug 26, 2010

can I deny the access to my server for a specific OS? I have one PC which I want to give it acces from winxp, but if it's boot into ubuntu I want to deny all access to my server, same IP, same ethernet card

View 8 Replies View Related

OpenSUSE Network :: Suse Firewall Blocking Vnc Over Ssh?

Sep 8, 2010

I've setup vnc over ssh tunnelling however the Suse firewall seems to be blocking it. On the local host I have this in ~/.ssh/config:LocalForward localhost:5900 remotehost.com:5900 The problem is that this only works when I either disable the firewall or add an exception for VNC. Both of these actions defeat the whole purpose of ssh tunnelling since they leave my VNC port open to the outside world (very insecure).

View 2 Replies View Related

OpenSUSE Network :: Accessing A Machine Behind A Firewall?

Oct 22, 2010

I'm in the situation where I'm trying to create 2 private networks using ESX server, all behind a NAT router (static ips are used). I used an openSuse11 vm as a router and was able to configure it so that a machine on one private network was able to access the public network. The problem I have now it that I need to be able to access a machine on the private network from the public network using a different set of IP's.

So if a machine in the private network has an IP of 10.1.0.222 I should be able to ping it using 10.99.0.222 or some other IP. I have never done this before and after reading up on iptables and linux routing I feel more confused than before. Is it possible to add IPs to eth0 (public) and have them mapped to machines on a private network eth1 or eth

View 3 Replies View Related

OpenSUSE Network :: How To Configure YaST Firewall

Mar 5, 2011

I'm looking forward to the release of openSUSE 11.4, which I'm looking to install as an Internet facing gateway on a mini-ITX machine with 2 Ethernet cards. As such I've been reading up on the YaST Firewall trying to find out to configure it, and there's one thing I'd like to be able to do: 'stealth' all the firewall ports.

In other words, if someone were to hypothetically do a port scan of my external IP address, I would rather they not know whether any of the ports on my gateway are open or closed, so instead of replying with the status of those ports the packets get dropped. I've been able to do this with a product called Astaro Security Gateway, which I currently have installed on a second hand Dell Optiplex machine, but I am now looking into the possibility of installing this as a virtual machine inside an openSUSE 11.4 host (extra level of security) and would like the same functionality for the host OS.

View 9 Replies View Related

OpenSUSE Network :: How To Block An Outgoing Firewall

Mar 11, 2011

How I can refuse an outgoing connection on opensuse firewall by default outbound policy is permissive, and the p2p I explicitly deny an outgoing, according to protocol, remote port and local port.

But I can add rules as how to run opensuse firewall rules are permissive only for inbound traffic and so I can not specifically deny an outgoing connection.

Before using fwbuilder is very powerful and configurable but now I'm with suse for convenience but want to know if you can do what I want, if not I will have to use fwbuilder.

View 5 Replies View Related

OpenSUSE Network :: 11.4 New Install, How To Operate Firewall?

May 25, 2011

I have done a new install of 11.4 and as with previous versions, I have to go to YAST2 and disable the firewall before I have internet and local network access. Finally I must find out how to do this correctly.

How to I change the default firewall to allow me internet and local network access without disabling it completely? Also I am unclear about the function of Novel Network Armor? What does this do?

View 9 Replies View Related

OpenSUSE Network :: 2nd IP Adresse On Eth0 But Different Firewall Zone?

Jan 30, 2010

I tryed to setup a second IP address with yast on a openSUSE 11.2 on eth0 as eth0:2nd but with a different firewall zone. But SUSE firewall just see eth0.

I want to define with services are available on with IP address. Also with custom rules I can't specify a destination IP.

So now can I do this with yast? Or have I todo this manually without SUSE firewall?

View 2 Replies View Related

OpenSUSE Network :: Firewall - Can Open All Ports For One IP Address

Apr 27, 2010

I have a couple of openSUSE 11.2 machines and each is directly connected to the Internet (they are not behind a router, firewall, etc). I want them to be able to communicate without any firewall restrictions, but keep the firewall rules for all other IP addresses. Is this possible? the software package I'm trying to use randomly chooses a port to use in the range of 32768-61000 and I don't feel comfortable having a port range that wide open on both machines.

View 5 Replies View Related

OpenSUSE Network :: Properly Open Port Through Firewall?

Sep 27, 2010

I have properly configured my router to open a port for Transmission and Vuze. The OpenSuSE firewall settings are somewhat confusing, however. How do I add a port specifically for the BT protocol? I know it's the firewall causing issues, because when I shut it down, my BT apps roar to life, and die with a whimper when I turn it back on. In Ubuntu, opening a port in the router is automatically configured in the firewall; that is apparently not the case with this distro.

So, when I go to Yast Firewall, I see "allowed services" under the tabs available. When I hit that tab, I see a dropdown menu that contains services such as NetBios Server and Samba Server. Am I choosing one of those available and adding a port to it? Am I adding a custom service via the Advanced settings, and if so, why isn't there a way to label the service so that it shows up under allowed services?

View 9 Replies View Related

OpenSUSE Network :: Configuring Squid Firewall In SUSE?

Dec 3, 2010

.i need to configure squid in my company how to install and configure squid in my SUSE server...

View 2 Replies View Related

OpenSUSE Network :: Configure Firewall To Allow Win7 Access

Jan 1, 2011

I've got my server mostly configured with Samba file shares - I can access from Linux and OSX computers. I've enabled Samba Clietn and Sambar server in the openSUSE firewall settings (on the server), but Windows 7 can't seem to connect. I've been trying to tweak registry keys in Windows and such, but had no luck. However, when I turned off the firewall on the server, I was instantly able to connect. Is there some other service or port I need to open for Windows 7?

View 4 Replies View Related

OpenSUSE Network :: Vuze Firewall And Port Forwarding?

Jan 15, 2011

I used to have Opensuse 11.0 and Vuze 4.0.2 and both were working great. Recently I upgraded to OpenSuse 11.3 and installed Vuze 4.5.10. I did not change any configuration in the ADSL router but now I could not get the smiley icon to go green. I followed all the steps given here: A Quick Bittorrent Guide (with screenshots). It doesn't work. so I modified FW_ROUTE and FW_MASQUERADE to yes in /etc/sysconfig/SuSefirewall2. That also does not work. What did I miss here? My ADSL router is DSL-2640T.

View 3 Replies View Related

OpenSUSE Network :: UPnP Blocked By SuSE Firewall?

Jan 15, 2011

I setup Mediatomb on another box in my house to connect to with XBMC. XBMC will only connect though if the firewall is off on the local machine. I have both TCP and UCP ports 1900 and 50500 (the port for Mediatomb) enabled on my laptop (local) and the correct ports are open on the remote machine (my wife's vista laptop will connect through XBMC). I can connect to Mediatomb through it's web interface (to set visible folders/files) but not through UPnP (at least not through XBMC)

View 9 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved