Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]

Groups > comp.os.linux.security > #586

Re: VPN Through Firewall To Office

Newsgroups comp.os.linux.security
Date 2014-12-28 13:47 -0800
References <1122173785.227534.107190@g47g2000cwa.googlegroups.com>
Message-ID <3bc7b611-a41b-4ef2-807b-d9b80f169126@googlegroups.com> (permalink)
Subject Re: VPN Through Firewall To Office
From Jared Twyler <admin@intl-alliance.com>

Show all headers | View raw

On Saturday, July 23, 2005 9:56:25 PM UTC-5, googl...@hotpop.com wrote:
> >From home, I use vpnc on Ubuntu 5.04 to get to my office VPN which is
> the typical Cisco variety on IPSEC and RSA SecurID. I currently have my
> workstation behind another NAT router/firewall.
> 
> If I put myself with no local firewall, I get through just fine on VPN
> and a ShieldsUp check shows that I've got no open ports. So that's all
> well and fine.
> 
> However, if I improve things a bit and put myself through an
> INPUT-based, limited, local firewall like:
> 
> Chain INPUT (policy ACCEPT)
> target     prot opt source               destination
> ACCEPT     all  --  anywhere             anywhere
> ACCEPT     udp  --  mydns1.net  anywhere            udp spt:domain
> ACCEPT     udp  --  mydns2.net  anywhere            udp spt:domain
> REJECT     tcp  --  anywhere             anywhere            tcp
> flags:SYN,RST,ACK/SYN reject-with icmp-port-unreachable
> REJECT     udp  --  anywhere             anywhere            udp
> reject-with icmp-port-unreachable
> 
> Chain FORWARD (policy ACCEPT)
> target     prot opt source               destination
> 
> Chain OUTPUT (policy ACCEPT)
> target     prot opt source               destination
> 
> 
> 
> ...I find I cannot VPN through this -- vpnc just hangs and times out,
> waiting for a response back.
> 
> What do I need to do with iptables to poke my VPN connection through?
> 
> Also, I think I heard that ipsec uses port 500. Do I just need to
> expose that?

Andorra (Residential ISP: Servei de Telecomunicacions d'Andorra)
Argentina (Residential ISP: Gigared, S.A.)
Brazil (Residential ISP: CTBC / Algar Telecom)
Canada (Residential ISP: Bell Canada)
Chile (Residential ISP: GTD Internet, S.A.)
China (Residential ISP: China Telecom)
Costa Rica (Residential ISP: Radiografica Costarricense)
Hungary (Residential ISP: Invitel Tavkozlesi Zrt.)
India (Residential ISP: Tata Communications)
Israel (Residential ISP: Bezeq International)
Italy (Residential ISP: Telecom Italia)
Italy (Residential ISP: Tiscali)
Italy (Residential ISP: KPNQ West Italia)
Mexico (Residential ISP: Iusacell)
New Zealand (Residential ISP: Voyager Internet, Ltd.)
Norway (Residential ISP: Altibox)
Panama (Residential ISP: Cable Onda)
Romania (Residential ISP: RCS & RDS)
Singapore (Residential ISP: Tata Communications)
Slovenia (Residential ISP: Tusmobil, D.O.O.)
South Africa (Residential ISP: Mweb)
Taiwan (Residential ISP: Chunghwa Telecom Co., Ltd.)
United Arab Emirates (Residential ISP: Emirates Integrated Telecommunications Co.)

Residential VPN Services: https://www.intl-alliance.com/store/cart.php?gid=15
Residential Remote Desktops: https://www.intl-alliance.com/store/cart.php?gid=17
Residential SSHv2 Tunnels: https://www.intl-alliance.com/store/cart.php?gid=18

Back to comp.os.linux.security | Previous | Next | Find similar

Thread

Re: VPN Through Firewall To Office Jared Twyler <admin@intl-alliance.com> - 2014-12-28 13:47 -0800

csiph-web