OpenSUSE Network :: Allow Openvpn Service In Firewall?
Jul 13, 2010I can't get my openvpn work if the firewall is on , and I also don't see any option to allow openvpn service in firewall allow service.
View 1 Replies
ADVERTISEMENT
OpenSUSE Network :: Firewall Logs Are In /var/log/{firewall,warn,messages} - Clutter?
Mar 25, 2011I suspect this is an initial configuration bug. All firewall logs seem to be going to all
three files. That causes a lot of clutter in the log files, and makes it difficult to see whether there are any serious problems being logged.
Ubuntu Networking :: Network-manager-openvpn And Static-key OpenVPN Connection In 9.10
Apr 5, 2010i have some problems with configuring openvpn tunnel connection to my openvpn server. I'm using static-key tcp connection. Network manager always said to me that connection could not be established. Also, when i try to run openvpn from terminal, i got some strange permissions problem:
Code:
openvpn --config config.ovpn
Mon Apr 5 15:48:37 2010 OpenVPN 2.1_rc19 i486-pc-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] built on Oct 13 2009
Mon Apr 5 15:48:37 2010 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Mon Apr 5 15:48:37 2010 /usr/sbin/openvpn-vulnkey -q moj.key
[code]....
OpenSUSE Network :: Increase Network Security> Personal Firewall?
Apr 7, 2011I want some advice for making my system more secure. I want deactivate any network connection that is unnecessary. Only my browser and the update ability of zypper should have access to the internet. On windows there are personal firewalls.
How can I block internetaccess for all other programmes on openSUSE?
Fedora :: Why OpenVPN Service Can't Start Up
Nov 24, 2009It is the first time have I used VPN. I installed OpenVPN in my Fedora 11 computer. I did it following:URL...And I stopped at step 16: service openvpn start . The service can not start up. Even if I disabled Selinux . Does anyone know how to treat this trouble.
View 1 Replies View RelatedOpenSUSE Network :: OpenVPN Server Setup?
Feb 22, 2010We have installed "openVPN" from openSUSE 11.2 repo and "openVPN - webmin module" (GUI).What it needs to be done .. "Road Warriors" need to be able to access websites through openSUSE box sitting in the data center, from remote locations (hotel, coffe shops, wi-fi hot spots,..)We're half way there but it gets stucked somewhere with the IP's
View 6 Replies View RelatedOpenSUSE Network :: Browse When Using KVpnc And OpenVPN?
Mar 2, 2010I use KVpnc and openVPN to connect to my desktop at work from my laptop at home. This works fine, I can reach my desktop at the office from my laptop at home. The only problem is that when the Vpn connection is active I cannot use a browser on my laptop. In fact, I cannot connect to anything outside the office Vpn (like mail, chat etc).
I suspected it had something to do with the DNS servers at the office not being reachable from the Vpn so I added my "regular" DNS servers to the /etc/resolve.conf used when the Vpn is active, I added two lines in total on the form "nameserver <ip-address>". This did not solve the problem. I have searched the KVpn forums without finding anything, and the same goes for the openSUSE forums. Does anybody else experience the same problem?
OpenSUSE Network :: Openvpn Broken After Upgrade To 11.1
Jul 6, 2010after I upgraded my SUSE 11.0 to 11.1 many problemes solved themselves. But now there is a new one.
I use openvpn, which always used to work without problems. After upgrading to SUSE 11.1 there is the error message:
"/etc/openvpn/client-suse.sh: line 7: modify_resolvconf: command not found
Wed Jul 7 00:11:38 2010 script failed: could not execute shell command"
The shell script is as follows:
Code:
#!/bin/sh
UPORDOWN=$1
DEV=$2
case $UPORDOWN in
up)
modify_resolvconf modify -s openvpn -p openvpn -t OpenVPN
[Code]....
OpenSUSE Network :: 11.3 And Openvpn Connection Hangs
Aug 6, 2010I have freshly installed OpenSUSE 11.3 64 bit and reimported my old openvpn connections via Network Manager. Connection can be established fine, but after 3 to 6 seconds (pings) it will stop to receive any packets on the tun device.
I tried disabling the firewall, starting openvpn manually, no avail. I checked the message log and the openvpn output, no messages recorded.
OpenSUSE Network :: Samba And Firewall / Samba Is Not Working When Firewall Is On?
Jul 26, 2010Samba is working correctly if Susefirewall2 is off. I have added Samba client and Samba Services for extern access but samba is not working when firewall is now on. Which services should I also add ?
View 1 Replies View RelatedUbuntu Networking :: OpenVPN Bridge Mode Firewall?
Nov 7, 2010I have OpenVPN running on my Ubuntu Server just fine. I can connect over the Internet and access all my resources on the LAN via bridged mode perfectly. My server only has one LAN card and sits behind my router, which means it has a private IP address of 10.1.1.2....Which brings me to my question. I want to open up access to my friends via OpenVPN, but I don't want them to be able to access other machines on my LAN (e.g. 10.1.1.20). However, I do want them to be able to talk to each other and pass broadcasts (old LAN games), as well as my laptop (let's say 10.1.1.7).I've tried using iptables to block traffic to the LAN (such as .20), to no avail. I've been reading up and it seems as though iptables won't even filter the traffic, as it's passed at a lower layer. Is this true? If so, what do you recommend I do in order to prevent my buddies from accessing the rest of my LAN while siumultaneously allowing broadcasts pass for some very old Windows LAN games (we're talking Windows 9.
View 2 Replies View RelatedServer :: Make Openvpn Working Without Nating In Firewall?
Jul 26, 2011I had installed openvpn in linux machine (public ip) remote pc.. and installed client openvpn in windows xp machine (local network )remote pc... ...how can i accesss openvpn server to access local lan network without performing NATING in firewall.
View 2 Replies View RelatedFedora Servers :: Openvpn Service Is Dead
Apr 12, 2010i just installed Fedora 12, clean without anything change in it. I opened services dialog, and the openvpn service have status:dead, however it shows that it is enabled.when i try to run it as:/sbin/service openvpn start.It write OK. However if check it:/sbin/service openvpn status it write that service not running. What is a point of a problem? I have opened openvpn in FireWall,however without success, may be some additionsl services for openvpn are not running?
View 1 Replies View RelatedServer :: Openvpn Error During Starting The Service
Jul 21, 2011WHEN I START /openvpn /etc/openvpn/server.conf im getting the following error i had installed the configuration by following link [url]
I had pasted i error log below:
OpenSUSE Network :: Windows Remote Desktop Over OPENVPN?
Feb 27, 2010I have OpenVPN 2.0.8 installed configured to Ethernet Bridge BR0. All windows outside machines can "see" and mount remote inside firewalled machines (i.e. \machine1 or [URL]). However I can't access to inside windows machines with windows Remote Desktop
View 3 Replies View RelatedOpenSUSE Network :: OpenVPN - Permission Denied For Vars Command
Mar 30, 2010I did some reading on Openvpn and am following some instructions I found @ Install & Configure OpenVPN SSL VPN in SUSE & openSUSE Linux | SUSE & openSUSE
I keep getting the same error message when I run the . ./vars command
"NOTE: If you run ./clean-all, I will be doing a rm -rf on /etc/openvpn/easy-rsa/2.0/keys"
But when I run ../vars I get
"Bash: ../vars: Permission denied"
OpenSUSE Network :: SUSEFirewall Blocking OpenVPN Traffic - How Can Configure To Allow
Nov 17, 2010I have a remote network that I manage consisting of a DLink DFL-210 firewall/router, and behind that a Dell server running openSUSE 11.2 and a collection of Windows XP/Vista/7 computers.
The Linux box is running OpenVPN as a server (that is how I connect to this network) and a client (it connects to a second server - running XP - at a different location).
The DLink router is the DHCP server and provides addresses on the 192.168.51.0/24 network. The OpenVPN server provides the 10.8.51.0/24 address range.
The remote network that the Linux box connects to is 192.168.54.0/24 via the OpenVPN network 10.8.54.0/24.
I have added routes to the DLink router to route all traffic to the 10.8.51.0/24 and 192.168.54.0/24 networks to the Linux box.
With SUSEFirewall turned off, after I have connected via OpenVPN from my remote computer I can ping all active 192.168.51.0/24 addresses. Other computers on the 192.168.51.0/24 network can ping computers on the 192.168.54.0/24 network. But if I turn on SUSEFirewall, neither of these work. However, I can ping 10.8.54.1 from any computer on the 192.168.51.0/24 network.
How can I set up SUSEFirewall to allow these networks to communicate with eachother?
Security :: Public Facing OpenVPN - Open Any Ports On The Router / Firewall
Feb 14, 2011Within the documentation of example OpenVPN setups there is a setup that shows an OpenVPN Server with two network interfaces. One interfaces is plugged into the public internet network and the second interface is plugged into the private network.
Normally I assume that it would be best to place the OpenVPN system inside the network behind the router and firewall and open only the ports needed on the router to allow access to the OpenVPN system. All other router ports would be closed. This is the first example they show. To see what I am talking about see page(s) 6-7 here -> [URL]
If one were to use the two interface public facing setup, when would that setup best be justified? I guess if you didn't want to open any ports on the router/firewall then this could be justified but then you have to lock down this public system individually instead of having it protected by the network firewall.
Fedora Networking :: OpenVPN Timeout - Error From NetworkManager - Connect To My Router/firewall
Mar 13, 2011I'm getting a timeout error from NetworkManager when attempting to connect to my router/firewall.
Excerpt from /var/log/messages attached.
OpenSUSE Network :: IP Range In Firewall?
Mar 29, 2010I am trying to add a custom allow rule in the firewall for a range of IPs from 74.201.102.0 - 74.201.103.255, what exactly am I supposed to enter in the source box? I believe I have to add two separate rules for 102 and 103, and I put /24 at the end of both, is this correct to get the whole range of IPs?
View 3 Replies View RelatedOpenSUSE Network :: 11.4, CUPS, And The Firewall?
May 25, 20111. Under openSUSE 11.2, I allowed printer sharing through CUPS by setting the Firewall to Allow Services of CUPS in the External Zone section. I don't see the CUPS option in the Allow Services of the Firewall under 11.4, any zone. Is my system missing something?2. If I turn off the Firewall, the client computer can see the printers, even get the broadcasted names. If I put port 631 in TCP of the Advanced setting of the External Zone, the client computer can see the printer too, but I know I read somewhere that putting 631 in the External Zone is basically allowing printer requests from the entire internet.
View 2 Replies View RelatedOpenSUSE Network :: 11.2 Acting As Router Firewall
Mar 29, 2010switched recently to 11.2 and it works fine for me as workstation I want to set up a router separating a part of the network and also acting as a firewall/proxy... Configured 2 Ethernet Interfaces, checked Ip forwarding in Yast but it does not forward the packets from the "internal" to the "external" network. Hovewer after I set up my router as default for machines on internal network I can ping the external interface but no adress on external network (particularly the one of the default router) !!! From the router I can reach both networks and the net via default gateway on external. Tried to:
a) switch firewall completely off
b) iptables -P FORWARD ACCEPT
c) masquarading internal adresses to the external network
my interfaces configuration looks like:
eth0 Link encap:Ethernet HWaddr 00:13:D4:E3:A2:7B
inet addr:192.168.1.34 Bcast:192.168.1.255 Mask:255.255.255.0
inet6 addr: fe80::213:d4ff:fee3:a27b/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
[Code].....
OpenSUSE Network :: 11.2 Users - Check Your Firewall
May 19, 2010We have reason to ask this of you following some strange firewall behaviour - But don't panic If you use openSUSE 11.2 and you think: Your Firewall should be running You are not sure but think it should be check and report back here.
This is how to check:
Go to Yast > Security and Users > Firewall
OpenSUSE Network :: Disable Ping On The Firewall?
May 27, 2010I did a shields up test and it told me that 1056 ports were stealth but that my pc responded to ping and was visible on the net. How do i fix this?
View 4 Replies View RelatedOpenSUSE Network :: Firewall Setup For OpenMPI - Can't Get To Run
Jul 24, 2010I'm trying to get OpenMPI (a parallel programming library) working on my home system. I have just two machines on it now, t61 and quad, connected through a router. (Which is also connected to cable modem for internet.) I can ssh between the machnes, mount directories with NFS, etc. However, I just can't get the OpenMPI to run. The OpenMPI message board suggested that the most probable cause is that the firewall is blocking TCP. I don't know how to tell if that's the problem, and can't find any manual for the SuSE firewall, while the various Wikis &c that pop up in a search don't provide any information that addresses my problem.
View 9 Replies View RelatedOpenSUSE Network :: Blocking SMTP On Firewall?
Aug 19, 2010Ok here's my setup :
SuSE 10.0 X86 32 acting as my internet gateway and firewall.
eth0 is my internal interface network 192.168.0.0/24 IP 192.168.0.254 dsl0 is my internet connection and is a single ip PtP connection to my ISP.
My internal network is masquaraded onto the external network.
I run an smtp server on my gateway box that I need to be accessable to both the internal and external networks.
However I want to prevent machines on the internal network from establishing connections to external smtp servers, but still alow them to connect to the smtp server on the gateway to send email.
NOTE I do not want to force attempts to connect to [URL] 25 to be re-directed to my internal server I just want to drop or reject the connection.
The firewall up until now has just been configured through YaST, but am not afraid to edit script files if needed
The reason for doing this it to prevent spambots from being able to send through my isp, I keep my own machines clean but sometimes get asked to disinfect machines for other people (family members etc), where I need to connect to the outside world to get updates/virus defs etc, but don't want them spamming from my network.
OpenSUSE Network :: Firewall Rules For Specific OS?
Aug 26, 2010can I deny the access to my server for a specific OS? I have one PC which I want to give it acces from winxp, but if it's boot into ubuntu I want to deny all access to my server, same IP, same ethernet card
View 8 Replies View RelatedOpenSUSE Network :: Suse Firewall Blocking Vnc Over Ssh?
Sep 8, 2010I've setup vnc over ssh tunnelling however the Suse firewall seems to be blocking it. On the local host I have this in ~/.ssh/config:LocalForward localhost:5900 remotehost.com:5900 The problem is that this only works when I either disable the firewall or add an exception for VNC. Both of these actions defeat the whole purpose of ssh tunnelling since they leave my VNC port open to the outside world (very insecure).
View 2 Replies View RelatedOpenSUSE Network :: Accessing A Machine Behind A Firewall?
Oct 22, 2010I'm in the situation where I'm trying to create 2 private networks using ESX server, all behind a NAT router (static ips are used). I used an openSuse11 vm as a router and was able to configure it so that a machine on one private network was able to access the public network. The problem I have now it that I need to be able to access a machine on the private network from the public network using a different set of IP's.
So if a machine in the private network has an IP of 10.1.0.222 I should be able to ping it using 10.99.0.222 or some other IP. I have never done this before and after reading up on iptables and linux routing I feel more confused than before. Is it possible to add IPs to eth0 (public) and have them mapped to machines on a private network eth1 or eth
OpenSUSE Network :: How To Configure YaST Firewall
Mar 5, 2011I'm looking forward to the release of openSUSE 11.4, which I'm looking to install as an Internet facing gateway on a mini-ITX machine with 2 Ethernet cards. As such I've been reading up on the YaST Firewall trying to find out to configure it, and there's one thing I'd like to be able to do: 'stealth' all the firewall ports.
In other words, if someone were to hypothetically do a port scan of my external IP address, I would rather they not know whether any of the ports on my gateway are open or closed, so instead of replying with the status of those ports the packets get dropped. I've been able to do this with a product called Astaro Security Gateway, which I currently have installed on a second hand Dell Optiplex machine, but I am now looking into the possibility of installing this as a virtual machine inside an openSUSE 11.4 host (extra level of security) and would like the same functionality for the host OS.