bing
October 19th, 2010, 06:25 PM
Hi,
Shrew Soft ike was working fine under ubuntu 9.10 x86 but can't seem to get it working under 10.10. The imported .pcf file works fine under Windows ike 2.1.6 and 2.1.7.
Has anybody gotten it working? I already did the usual rp_filter = 0 business but I'm not sure there isn't another filter I'm missing(see output below).
Thanks!
Problem:
The VPN client 2.1.5 default repo .deb package and freshly compiled 2.1.7 connect successfully and receives the welcome message but any subsequent internet activity times out.
To Reproduce:
VPN client 2.1.7
OS Ubuntu 10.10 x86 (32-bit)
Gateway Make = Cisco VPN 3000
Gateway OS Version = unknown
Modified /etc/sysctl.conf and /etc/sysctl.d/10-network-security.conf to *.rp_filter=0.
sudo sysctl -a | grep rp_filter | grep -v arp
error: "Invalid argument" reading key "fs.binfmt_misc.register"
error: permission denied on key 'net.ipv4.route.flush'
error: permission denied on key 'net.ipv6.route.flush'
net.ipv4.conf.all.rp_filter = 0
net.ipv4.conf.default.rp_filter = 0
net.ipv4.conf.lo.rp_filter = 1
net.ipv4.conf.eth0.rp_filter = 1
net.ipv4.conf.eth1.rp_filter = 1
Shrew Soft ike was working fine under ubuntu 9.10 x86 but can't seem to get it working under 10.10. The imported .pcf file works fine under Windows ike 2.1.6 and 2.1.7.
Has anybody gotten it working? I already did the usual rp_filter = 0 business but I'm not sure there isn't another filter I'm missing(see output below).
Thanks!
Problem:
The VPN client 2.1.5 default repo .deb package and freshly compiled 2.1.7 connect successfully and receives the welcome message but any subsequent internet activity times out.
To Reproduce:
VPN client 2.1.7
OS Ubuntu 10.10 x86 (32-bit)
Gateway Make = Cisco VPN 3000
Gateway OS Version = unknown
Modified /etc/sysctl.conf and /etc/sysctl.d/10-network-security.conf to *.rp_filter=0.
sudo sysctl -a | grep rp_filter | grep -v arp
error: "Invalid argument" reading key "fs.binfmt_misc.register"
error: permission denied on key 'net.ipv4.route.flush'
error: permission denied on key 'net.ipv6.route.flush'
net.ipv4.conf.all.rp_filter = 0
net.ipv4.conf.default.rp_filter = 0
net.ipv4.conf.lo.rp_filter = 1
net.ipv4.conf.eth0.rp_filter = 1
net.ipv4.conf.eth1.rp_filter = 1