New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
openvpn running but no internet connection when firewall is running
lowendguy7
Member
I managed to get openvpn running as well as be able to ssh in without getting booted with the help of a user on here however I still cannot access the internet when the firewall is up. When I ping/ip test from the command line without firewall it pings and shows the new ip respectively; however with firewall up both just timeout.
I added some ports which I read were the ones for openvpn in csf.conf like so
# Allow incoming TCP ports
TCP_IN = "22,22000"
# Allow outgoing TCP ports
TCP_OUT = "20,21,22,25,53,80,110,113,443,587,993,995,1194,22000"
# Allow incoming UDP ports
UDP_IN = "20,21,53,22027"
# Allow outgoing UDP ports
# To allow outgoing traceroute add 33434:33523 to this list
UDP_OUT = "20,21,53,113,123,1194,22027"
What to try next?
This sounded like just the ticket but alas I just tried it and it didn't work.
I've been adding alot of crap to iptables randomly from different places so I need to clean it up at some point but so far non have solved the issue.
Comments
Ask provider to open OpenVPN ports 1194 and 443 from their side if they use firewall
It cant be that cos as I said it works fine when I turn off csf on my end.
Trash your firewall than find a new one. If you use McAfee trash this shit.
Do you add that csf.pre stuff?
He's using iptables you fucking imbecile.
fuck u with IP tables both
I would not have put it so bluntly but ye . I thought the first comment by him might have just been a fluke from not reading the message properly but no it just got worse :P
I have some dude helped the last few days so hopefully will get to the bottom of it soon. was spending alot of time pinging with things turned on/off one at a time to find just what is causing the block. Making some progress but not got to the root yet.
Sarkasm, sarkasm, some stupid
You just need to allow the NAT from the private subnet to the public IP and whatever port is OpenVPN listening on.