ive been searching everywhere for an answer to this, and really dont know if im posting in the right place, if i should be asking on the CSF forums insead please let me know
I want to be able to connect to my server (CentOS 5.6 running OpenVPN and CSF firewall) from any access point, without being blocked. Im using the windows service running in the background, and it works from any ip which i have added into the CSF 'allowed' list.
I have two problems:
1)
Everything is working great, i love openvpn! but, everytime i restart the iptables or change something with CSF, i cannot connect. The only way i can get my connection back up is by running the last few commands from the tutorial i followed into putty:
Code: Select all
iptables -A FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT
iptables -A FORWARD -s 10.8.0.0/24 -j ACCEPT
iptables -A FORWARD -j REJECT
iptables -t nat -A POSTROUTING -s 10.8.0.0/24 -o eth0 -j MASQUERADE
iptables -t nat -A POSTROUTING -j SNAT --to-source 83.xxx.xxx.211 (my ip)
2)
Sorry for all the questions!!! my second problem is when i connect to OpenVPN from a new ip address, such as on a public wifi connection which is what i mainly wanted openVPN for, i get blocked out for 5 mins.
To try and solve this, i tried adding the device (tun0) to the 'excluded devices' section in the CSF config, but that stopped the port forwarding.
What i would like to do ideally is fully remove any blocking on the port 1194 which i use for openvpn.
sorry i know this might be more of a CSF forums question too, but hoping someone here has the same setup as me and can help,
im new to linux only had it for a month, loving everything so far but completely stuck on this bit
thank you for any help you can give me
james