problem with adrelanos VPN firewall

Discussion in 'privacy problems' started by PanTauxyz, Nov 8, 2013.

Thread Status:
Not open for further replies.
  1. PanTauxyz

    PanTauxyz Registered Member

    Joined:
    Nov 8, 2013
    Posts:
    3
    I have problems with VPN firewall based on IPTABLEs. Ubuntu 13.10. I need all traffic through VPN.

    My VPN has different IP each time: 53.122.xxx.xxx. So i tried to use mask /16. Here is part of adrelanos VPN firewall with my configuration:

    VPN_SERVER=53.122.0.0/16
    ## it should cover whole range of IPs

    ## For OpenVPN. I have two interfaces.
    ## Eth1 is my primary interface, tun0 is VPN interface. I tried both
    VPN_INTERFACE=eth1

    ## Destinations you don not want routed through the VPN.
    LOCAL_NET="192.168.1.0/24 192.168.0.0/24 127.0.0.0/8"

    ... after that comes many IPTABLEs rules
    iptables -A OUTPUT -d "$VPN_SERVER" -j ACCEPT

    When I start firewall, VPN does not work. Syslog contains many messages like that:

    Nov 7 10:21:52 Dellpc nm-openvpn[2765]: write UDPv4: Operation not permitted (code=1)
    Nov 7 10:21:52 Dellpc kernel: [ 1111.202935] VPN firewall blocked output4:IN= OUT=eth1 SRC=192.168.1.9 DST=53.122.45.2 LEN=70 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=UDP SPT=39992 DPT=1194 LEN=50


    I don't know why it blocks actual VPN IP (53.122.45.2), when Firewall rules says, it shouldn't block all IPs from range 53.122.0.0/16. I have also tried to write rules with iptables -A OUTPUT -m iprange --dst-range ..... but no success
     
    Last edited: Nov 8, 2013
  2. PanTauxyz

    PanTauxyz Registered Member

    Joined:
    Nov 8, 2013
    Posts:
    3
Loading...
Thread Status:
Not open for further replies.