Reply To: OpenVPN struggle.

Home Page Forums Network Management ZeroShell OpenVPN struggle. Reply To: OpenVPN struggle.

#53922

igork
Member

Thank you for your reply.

These are the rules that I have on the firewall:
Policy: Drop Chain: Input
1 ETH00 * ACCEPT all opt — in * out * 0.0.0.0/0 -> 0.0.0.0/0 PHYSDEV match –physdev-in ETH00 yes
2 BRIDGE00 * ACCEPT all opt — in BRIDGE00 out * 0.0.0.0/0 -> 0.0.0.0/0 yes
3 WLAN00 * ACCEPT all opt — in * out * 0.0.0.0/0 -> 0.0.0.0/0 PHYSDEV match –physdev-in WLAN00 yes
4 ETH02 * ACCEPT all opt — in ETH02 out * 0.0.0.0/0 -> 0.0.0.0/0 no
5 VPN99 * ACCEPT all opt — in VPN99 out * 0.0.0.0/0 -> 0.0.0.0/0 yes
6 ETH01 * ACCEPT all opt — in ETH01 out * 198.232.221.101 -> 0.0.0.0/0 yes
7 * * ACCEPT all opt — in * out * 0.0.0.0/0 -> 0.0.0.0/0 state RELATED,ESTABLISHED yes
8 ETH01 * DROP all opt — in ETH01 out * 0.0.0.0/0 -> 0.0.0.0/0 yes

Policy: Drop Chain: Forward
1 BRIDGE00 * ACCEPT all opt — in BRIDGE00 out * 0.0.0.0/0 -> 0.0.0.0/0 yes
2 ETH00 * ACCEPT all opt — in * out * 0.0.0.0/0 -> 0.0.0.0/0 PHYSDEV match –physdev-in ETH00 yes
3 ETH02 * ACCEPT all opt — in ETH02 out * 0.0.0.0/0 -> 0.0.0.0/0 yes
4 WLAN00 * ACCEPT all opt — in * out * 0.0.0.0/0 -> 0.0.0.0/0 PHYSDEV match –physdev-in WLAN00 yes
5 VPN99 * ACCEPT all opt — in VPN99 out * 0.0.0.0/0 -> 0.0.0.0/0 yes
6 ETH01 * ACCEPT all opt — in ETH01 out * 198.232.221.101 -> 0.0.0.0/0 yes
7 * * ACCEPT all opt — in * out * 0.0.0.0/0 -> 0.0.0.0/0 state RELATED,ESTABLISHED yes
8 ETH01 * DROP all opt — in ETH01 out * 0.0.0.0/0 -> 0.0.0.0/0

VPN connection comes from 198.232.221.101 address.

In addition, I cannot disconnect from the VPN. The status usually stays after:
Closing TUN/TAP interface

And nothing happens. The only way to get rid of this issue is to restart the computer.