Skip to main content

Thread: iptables & VPN client

-

hi,

i'm trying set iptables rules on desktop machine acting ipsec/l2tp vpn client. able prevent outbound traffic not fall of following categories:
  • dhcp packets (to allow connection ip network)
  • isakmp packets allow set-up of ipsec connection
  • esp packets transport data

internet searches bring lots of hits gateway machine allow type of traffic route through it, not enforce when firewall on source machine.

have tried following iptables rules:
code:
iptables -a output -p udp --sport 67:68 --dport 67:68 -j accept  iptables -a output -p udp --sport 500 --dport 500 -j accept  iptables -a output -p esp -j accept  iptables -a output -j drop
these rules allow dhcp , isakmp packets through, , in fact ike completes , ipsec connection gets created (checked via wireshark @ remote end). esp packets dropped.

experimentation few different rules, appears iptables dropping packets attempting leave, presumably because entering ip stack whatever @ source, becoming esp packets traverse ipsec layer.

there way achieve goal, or trying not possible iptables?

gratefully received.



Forum The Ubuntu Forum Community Ubuntu Specialised Support Security [all variants] iptables & VPN client


Ubuntu

Comments

Post a Comment

Popular posts from this blog

How to set the order of FAQs instead of alphabetical

-
i have 19 faqs default showing them in alphabetical order.   i dislplay them in different order, weighting this, , how weighting work, is larger number higher priority, question id show first on list need numbered in weight field 19? hey vickituch,   as mentioned, default faq items sorted alphabetically. weighting, can modify order in faq items appear. way weighting works higher number specify, higher priority faq item have. example, if have 3 items each weight specified, priority follows:   99. faq item. 45. faq item. 7. yet faq item More discussions in Content Management and Modules adobe
Read more

Thread: Get UK Keyboard working

-
i using ubuntu desktop on lucid , keyboard changes british keys american keys, #/£, ~/| , "/@ around. in system->preferences->keyboard menu have set keyboard uk. when log via putty uk keys come out right. there other place more configuration required? /vfclistsguy actually settings should enough.. can try setxkbmap -query see current layout settings. Forum The Ubuntu Forum Community Ubuntu Official Flavours Support Desktop Environments [kubuntu] Get UK Keyboard working Ubuntu
Read more

how do I change the e-mail address for my merchant account

-
aloha   i have different primary address paypal account 1 listed merchant account in form   the different address same paypal account different e-mail address   i change responses   how do that?? hi,   you need register email address want paypal account form, current paypal email used form replaced. that, open form, go options -> collect payments. in paypal setup tab, enter new email address , click register.   please let me know if need more assistance.   thanks,   eman fu senior computer scientist adobe systems inc More discussions in Archived Spaces adobe
Read more