[vpn-help] Connecting to Watchguard from Linux v2.1.7
tom+shrew at falkensweb.com
tom+shrew at falkensweb.com
Mon Mar 26 12:48:36 CDT 2012
On Thursday 22 March 2012 22:39:18 Kevin VPN wrote:
> There is another change that has to be made on Ubuntu (all Linux
> actually) to make the client work. You need to change a kernel settings
> for the rp_filter.
Even after
# sudo sysctl -w net.ipv4.conf.default.rp_filter=0
# sudo sysctl -w net.ipv4.conf.all.rp_filter=0
and launching ikea direct from that shell, still no dice, see line *********:
Config loaded for site 'ipsec-users.vpn'
attached to key daemon ...
peer configured
iskamp proposal configured
esp proposal configured
client configured
local id configured
remote id configured
pre-shared key configured
bringing up tunnel ...
network device configured
tunnel enabled
gateway is not responding *************************
tunnel disabled
detached from key daemon ...
I hope to have access to the Watchguard devices logs this week.
Is the Ubuntu package maintainer here ?
Is any progress being made on why it's broken in recent Ubuntu's ?
Why doesn't the startup wrapper script save,set and restore the rp_filter value
by default, as the current install is borked, even if you do install an older
(meant to be) working build ?
I guess I'll go back to trying to make native ipsec work instead in the mean
time.
--
Tom
Trust no one.
More information about the vpn-help
mailing list