Folk,
I've solved some local problems and am trying to
duplicate "Example 2: A tunnel with static-key
security" in man openvpn.
Machines joule and newton here correspond to may
and june in the example.
nmap now reports the path to be open|filtered in
both directions. And the syslog doesn't say the
the tunnel failed.
http://carnot.yi.org/syslogexcerpt
Yet tunnel-wise pings fail.
Does all this suggest that udp 1194 is still
blocked? Any suggestions apart from my idea of
rigging iptables so that the tunnel uses port 22?
Thanks, ... Peter E.
==================================
Home to UBC
joule:/home/peter# nmap -sU -p1194 142.103.107.139
Starting Nmap 4.11 ( http://www.insecure.org/nmap/ ) at 2007-10-13 13:04 PDT
Interesting ports on 142.103.107.139:
PORT STATE SERVICE
1194/udp open|filtered unknown
Nmap finished: 1 IP address (1 host up) scanned in 0.446 seconds
joule:/home/peter# ping 10.4.0.2
PING 10.4.0.2 (10.4.0.2) 56(84) bytes of data.
ping: sendmsg: Operation not permitted
ping: sendmsg: Operation not permitted
...
--- 10.4.0.2 ping statistics ---
5 packets transmitted, 0 received, 100% packet loss, time 4000ms
==================================
UBC to Home
newton:/home/peter# nmap -sU -p1194 peasthope.yi.org
Starting Nmap 4.11 ( http://www.insecure.org/nmap/ ) at 2007-10-13 13:17 PDT
Interesting ports on S01060050ba52791c.pi.shawcable.net (24.108.34.72):
PORT STATE SERVICE
1194/udp open|filtered unknown
Nmap finished: 1 IP address (1 host up) scanned in 8.005 seconds
newton:/home/peter# ping 10.4.0.1
PING 10.4.0.1 (10.4.0.1) 56(84) bytes of data.
--- 10.4.0.1 ping statistics ---
5 packets transmitted, 0 received, 100% packet loss, time 4000ms
==================================
http://carnot.yi.org/
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
