edhoari

Forum Replies Created

Viewing 5 posts - 1 through 5 (of 5 total)
  • Author
    Posts
  • in reply to: Change TCP reordering parameter on ZS #52481

    edhoari
    Member

    Hi,

    You may find the configuration value for tcp_reordering in /proc/sys/net/ipv4/tcp_reordering

    Regards

    in reply to: Lan to lan vpn cannot ping #52558

    edhoari
    Member

    It works!!

    Thank’s redfive. You save my day 🙂

    in reply to: Lan to lan vpn cannot ping #52556

    edhoari
    Member

    192.168.1.1 is the default internet gw for the office site. I use NAT and give ZS a public ip.

    192.168.2.1 is the default internet gw for the home site. The ZS is another host in this subnet.

    Both ZS are vbox guest.

    in reply to: Lan to lan vpn cannot ping #52554

    edhoari
    Member

    Home side

    Kernel IP routing table
    Destination Gateway Genmask Flags Metric Ref Use Iface
    0.0.0.0 192.168.2.1 0.0.0.0 UG 0 0 0 ETH00
    192.168.1.0 192.168.10.1 255.255.255.0 UG 0 0 0 VPN00
    192.168.2.0 0.0.0.0 255.255.255.0 U 0 0 0 ETH00
    192.168.10.0 0.0.0.0 255.255.255.0 U 0 0 0 VPN00
    192.168.250.0 0.0.0.0 255.255.255.0 U 0 0 0 VPN99

    Chain INPUT (policy ACCEPT 3959 packets, 375K bytes)
    pkts bytes target prot opt in out source destination
    29711 2630K SYS_GUI all — any any anywhere anywhere
    29711 2630K SYS_INPUT all — any any anywhere anywhere
    11 1008 SYS_HTTPS tcp — any any anywhere anywhere tcp dpt:http
    1466 266K SYS_HTTPS tcp — any any anywhere anywhere tcp dpt:https
    1033 78354 SYS_SSH tcp — any any anywhere anywhere tcp dpt:ssh

    Chain FORWARD (policy ACCEPT 5 packets, 420 bytes)
    pkts bytes target prot opt in out source destination

    Chain OUTPUT (policy ACCEPT 2747 packets, 784K bytes)
    pkts bytes target prot opt in out source destination
    24507 3211K SYS_OUTPUT all — any any anywhere anywhere

    Chain NetBalancer (0 references)
    pkts bytes target prot opt in out source destination

    Chain SYS_GUI (1 references)
    pkts bytes target prot opt in out source destination
    0 0 ACCEPT tcp — any any 192.168.2.117 anywhere tcp dpt:12081

    Chain SYS_HTTPS (2 references)
    pkts bytes target prot opt in out source destination
    0 0 ACCEPT all — lo any anywhere anywhere
    1477 267K ACCEPT all — any any anywhere anywhere

    Chain SYS_INPUT (1 references)
    pkts bytes target prot opt in out source destination
    18354 1317K ACCEPT all — lo any anywhere anywhere
    257 124K ACCEPT udp — any any anywhere anywhere udp spt:domain state ESTABLISHED
    48 45955 ACCEPT tcp — any any anywhere anywhere tcp spt:http state ESTABLISHED
    0 0 ACCEPT tcp — any any anywhere anywhere tcp spt:8245 state ESTABLISHED
    56 4256 ACCEPT udp — any any anywhere anywhere udp spt:ntp state ESTABLISHED
    10996 1138K RETURN all — any any anywhere anywhere

    Chain SYS_OUTPUT (1 references)
    pkts bytes target prot opt in out source destination
    18354 1317K ACCEPT all — any lo anywhere anywhere
    262 19357 ACCEPT udp — any any anywhere anywhere udp dpt:domain
    60 3830 ACCEPT tcp — any any anywhere anywhere tcp dpt:http
    0 0 ACCEPT tcp — any any anywhere anywhere tcp dpt:8245
    60 4560 ACCEPT udp — any any anywhere anywhere udp dpt:ntp
    5771 1866K RETURN all — any any anywhere anywhere

    Chain SYS_SSH (1 references)
    pkts bytes target prot opt in out source destination
    0 0 ACCEPT all — lo any anywhere anywhere
    1033 78354 ACCEPT all — any any anywhere anywhere

    Office Side
    —-

    Kernel IP routing table
    Destination Gateway Genmask Flags Metric Ref Use Iface
    0.0.0.0 192.168.1.1 0.0.0.0 UG 0 0 0 ETH00
    192.168.1.0 0.0.0.0 255.255.255.0 U 0 0 0 ETH00
    192.168.2.0 192.168.10.254 255.255.255.0 UG 2 0 0 VPN00
    192.168.10.0 0.0.0.0 255.255.255.0 U 0 0 0 VPN00
    192.168.250.0 0.0.0.0 255.255.255.0 U 0 0 0 VPN99

    Chain INPUT (policy ACCEPT 2212 packets, 265K bytes)
    pkts bytes target prot opt in out source destination
    6217 804K SYS_GUI all — any any anywhere anywhere
    6217 804K SYS_INPUT all — any any anywhere anywhere
    0 0 SYS_HTTPS tcp — any any anywhere anywhere tcp dpt:http
    668 90353 SYS_HTTPS tcp — any any anywhere anywhere tcp dpt:https
    509 40132 SYS_SSH tcp — any any anywhere anywhere tcp dpt:ssh

    Chain FORWARD (policy ACCEPT 34 packets, 36840 bytes)
    pkts bytes target prot opt in out source destination

    Chain OUTPUT (policy ACCEPT 2175 packets, 349K bytes)
    pkts bytes target prot opt in out source destination
    5336 1098K SYS_OUTPUT all — any any anywhere anywhere

    Chain NetBalancer (0 references)
    pkts bytes target prot opt in out source destination

    Chain SYS_GUI (1 references)
    pkts bytes target prot opt in out source destination
    0 0 ACCEPT tcp — any any 192.168.1.81 anywhere tcp dpt:12081

    Chain SYS_HTTPS (2 references)
    pkts bytes target prot opt in out source destination
    0 0 ACCEPT all — lo any anywhere anywhere
    668 90353 ACCEPT all — any any anywhere anywhere

    Chain SYS_INPUT (1 references)
    pkts bytes target prot opt in out source destination
    1939 202K ACCEPT all — lo any anywhere anywhere
    228 119K ACCEPT udp — any any anywhere anywhere udp spt:domain state ESTABLISHED
    24 22888 ACCEPT tcp — any any anywhere anywhere tcp spt:http state ESTABLISHED
    0 0 ACCEPT tcp — any any anywhere anywhere tcp spt:8245 state ESTABLISHED
    48 3648 ACCEPT udp — any any anywhere anywhere udp spt:ntp state ESTABLISHED
    3978 457K RETURN all — any any anywhere anywhere

    Chain SYS_OUTPUT (1 references)
    pkts bytes target prot opt in out source destination
    1939 202K ACCEPT all — any lo anywhere anywhere
    236 17111 ACCEPT udp — any any anywhere anywhere udp dpt:domain
    26 1604 ACCEPT tcp — any any anywhere anywhere tcp dpt:http
    0 0 ACCEPT tcp — any any anywhere anywhere tcp dpt:8245
    48 3648 ACCEPT udp — any any anywhere anywhere udp dpt:ntp
    3087 874K RETURN all — any any anywhere anywhere

    Chain SYS_SSH (1 references)
    pkts bytes target prot opt in out source destination
    0 0 ACCEPT all — lo any anywhere anywhere
    509 40132 ACCEPT all — any any anywhere anywhere

    in reply to: Lan to lan vpn cannot ping #52552

    edhoari
    Member

    Hi Redfive,

    I already turned off firewall on both sides and there is no windows machine. Just some linux box with no active firewall.

    Here is the tracepath result from Home side

    root@zeroshell root> tracepath 192.168.1.1
    1: 192.168.10.254 (192.168.10.254) 0.438ms pmtu 1500
    1: 192.168.10.1 (192.168.10.1) 20.384ms
    2: no reply
    3: no reply
    4: no reply
    5: no reply
    6: no reply

    I’m using Zeroshell-2.0 RC2 on both ZS.

Viewing 5 posts - 1 through 5 (of 5 total)