How to set for VPN?

Discussion in 'LnS English Forum' started by admash, Feb 5, 2005.

Thread Status:
Not open for further replies.
  1. admash

    admash Registered Member

    Joined:
    Feb 5, 2005
    Posts:
    7
    I am using looknstop version 2.05.

    I use findnot.com's vpn service, and when i try to connect, looknstop doesnt give me the option to allow or block the connection, it just doesn't allow the connection. Also, even though I have disabled the audio alarm, It continually sounds as i am trying to connect. the only way I could get it to go through is by turning off the internet filtering rule "all other packets" at the bottom of the list.

    What is the best and most secure way to configure looknstop?

    thanks
    A.
     
  2. qvpn

    qvpn Guest

    I am also trying to find out how to connect to findnot using VPN through Zone Alarm free V5. It just never gets through ? Anybody know why this is as i dont have any problems with ZA otherwise.
     
  3. CrazyM

    CrazyM Firewall Expert

    Joined:
    Feb 9, 2002
    Posts:
    2,428
    Location:
    BC, Canada
    Hi admash

    ... and welcome to Wilders :)

    Do your logs indicate what is being blocked by the "all other packets" rule that you may need to permit?

    Regards,

    CrazyM
     
  4. Frederic

    Frederic LnS Developer

    Joined:
    Jan 9, 2003
    Posts:
    4,354
    Location:
    France
  5. admash

    admash Registered Member

    Joined:
    Feb 5, 2005
    Posts:
    7
    Thanks to all for your help.

    Here is a sample from the log:

    02-07-05,03:39:53 U-2 'All other packets ' 193.151.75.22 IP Protocol:47
    02-07-05,03:39:53 D-3 'All other packets ' 193.151.75.22 IP Protocol:47
    02-07-05,03:39:55 U-4 'All other packets ' 193.151.75.22 IP Protocol:47
    02-07-05,03:39:56 D-5 'All other packets ' 193.151.75.22 IP Protocol:47

    I have downloaded the Protocol 47 rule, and I am now able to connect, however, I am now getting another message in the log:

    02-07-05,03:49:09 U-18 'All other packets ' 224.0.0.22 IGMP Data:148 4 0 0
    02-07-05,03:49:09 U-19 'All other packets ' 224.0.0.22 IGMP Data:148 4 0 0
    02-07-05,03:49:09 U-20 'All other packets ' 224.0.0.22 IGMP Data:148 4 0 0
    02-07-05,03:49:09 U-21 'All other packets ' 224.0.0.22 IGMP Data:148 4 0 0
    02-07-05,03:49:09 U-22 'UDP : Any other UDP pack' 239.255.255.250 UDP Ports Dest:1900

    What do I need to do next?
     
  6. Xyzzy

    Xyzzy Registered Member

    Joined:
    Jan 11, 2005
    Posts:
    67
    Location:
    Poland
    Try reading post "Configuring LnS for routers" (a sticky one, at the beginning of the posts list).

    X.
     
  7. Thomas M

    Thomas M Registered Member

    Joined:
    Jan 12, 2003
    Posts:
    355
    admash,
    Right now I am also fighting with some proper rules for my new Cisco-VPN client. And I do see these UDP port 1900 blocks also.

    Hopefully tomorrow I try posting my rules here....

    Be patient ;)
    Thomas :)
     
  8. Frederic

    Frederic LnS Developer

    Joined:
    Jan 9, 2003
    Posts:
    4,354
    Location:
    France
    Usually blocking these packets has no consequence.
    If you have a lot of these packets in the log, you can try to create a rule that will silently drop them. Otherwise you can simply let this happening.

    Frederic
     
  9. Thomas M

    Thomas M Registered Member

    Joined:
    Jan 12, 2003
    Posts:
    355
    admash,
    Since there is so much "official" work to do at the moment, I don't get a minute to play with the VPN client config in LnS. Sorry!

    Maybe you solved the problem already by yourself ??

    Thomas :)
     
  10. admash

    admash Registered Member

    Joined:
    Feb 5, 2005
    Posts:
    7
    I am still 'playing' with it myself. I am a bit of a novice, but am eager to learn. All of your help is appreciated.

    :)
     
  11. footbag

    footbag Guest

    To set Zone Alarm to allow you access to findnot, go to the Log Viewer in the Alerts and Logs section. Switch it to Firewall mode using the dropdown. You should see attempts to reach an IP address starting 193.xxx.xxx.xxx. Right button click, then select Add to add it to your trusted zone.

    You will probably need to add more than one address, I added two and all was then well. If you move between findnot servers, you will need to add all the IP addresses you use.
     
Thread Status:
Not open for further replies.