UDP problem…
I found a peculiar problem while I was setting up an openvpn link the other day. The goal was a simple shared key setup and I started with the sample configuration and modified it a bit to fit the circumstances, I allowed the correct UDP port through the firewall (I think 1194 if I recall correctly) and … it didn’t work. So…. I started over and worked from empty config files and put in the bare minimums… it still didn’t work – no appearance that it was making the connection at all to negotiate the link. I double and triple checked the firewall config/restarted it… nothing Then I decided to try TCP instead of a UDP port. Changed the firewall config to allow the TCP traffic on 1194, adjusted the server and client config and lo and behold it worked. The firewall in question….
Is a VERY old and due for software rebuild Mandrake SNF (Single Network Firewall). I had hoped to be able to go the upgrade route to the MNF series, but license changes there have made the price for them out of reason. (And if I were to do it, I’d have to make too many modifications to make it worth doing). Of course, MNF2 isn’t freely available at all (as per my last check.) So… IPcop may be in the future for that setup.
The bottom line is that there seems to be something funky with UDP and this Mandrake SNF install. The moral of the story may be to consider TCP if you run into problems with a UDP connection over a firewall (and can choose the protocol.)
Popularity: 1% [?]
Related Posts - Ping not working? try ARP I'll confess to having a lot to learn about IP ethernet networking. I feel pretty comfortable with basic TCP/IP (v4), the concept of UDP vs. TCP ports, ICMP pings, etc... but ARP is something that I haven't dabbled much with. It is, of course, a layer that TCP depends on.......
- What a week.... I think it's time to pass along a long story of what's gone on over the last week or so here and some of the reasons there hasn't been anything posted. Generally, I would say that work has been busy, but something happened last week that went a bit beyond......
- IPtables magic, or... Blocking Aggressive Outbound Traffic with IPtables Blocking Aggressive Outbound Traffic with IPtables. For starters, I've tested this on a test system that started out with NO iptables rules, and then moved on to an IPCop install (the vmware download from vmwarez.com...) I've detailed previously one dilemma that I had with regard to my own cable connection......
Related Websites - Social Security Spouse Benefits - Key Concepts Do you understand how Social Security retirement benefits work for (and with) your spouse? If not, you are not alone. Here is a summary of some key concepts in claiming and receiving a benefit as a husband or wife of a Social Security retiree. Claiming a Spousal Social Security......
- Why the Google Admob Acquisition is Important to Me Earlier this week Google made a $750 Million purchase of Admob a company specializing in mobile advertising. It surprised the market in two ways. It was Google's 3rd largest acquisition (behind DoubleClick and YouTube) ever. The mobile advertising industry is fairly small at this time. However, Google is moving into......
- Working after Receiving Social Security at Age 62 There are sound financial reasons for waiting to your full retirement age to claim Social Security retirement benefits. Delaying Social Security until age 70 can enhance those benefits even more. Nevertheless, many baby boomers will determine that they must or should begin receiving benefits at age 62. Unfortunately, many retirees......
Similar Posts
- IPCop | IP Cop Linux based Firewall
- x11vnc slow internet initial-connection performance – identd timeout
- Vista Upgrade version requirements…
- Virtual Server on Apache to listen on an alternate port
- Network Security guide for the home or small business network – Part 1 – A Hardware firewall