[Fedora-users-br] VPN no fedora
Armando Barsotini Neto
a.barsotini em gmail.com
Seg Ago 24 02:20:43 UTC 2009
Olá...
*Segue meu SERVER.CONF e o LOG do cliente mais abaixo:*
dev tun
proto udp
port 1194
push "route 192.168.0.0 255.255.255.0 10.0.0.1"
ping 15
ifconfig 10.0.0.1 10.0.0.2
secret static.key
comp-lzo
verb 3
status-version 2
status /var/log/openvpn/status.log
log /var/log/openvpn/openvpn.log
*LOG DO CLIENTE NO MOMENTO DA CONEXÃO ESTABELECIDA:*
Sun Aug 23 23:14:49 2009 OpenVPN 2.0.9 Win32-MinGW [SSL] [LZO] built on Oct
1 2006
Sun Aug 23 23:14:49 2009 WARNING: --ping should normally be used with
--ping-restart or --ping-exit
Sun Aug 23 23:14:49 2009 Static Encrypt: Cipher 'BF-CBC' initialized with
128 bit key
Sun Aug 23 23:14:49 2009 Static Encrypt: Using 160 bit message hash 'SHA1'
for HMAC authentication
Sun Aug 23 23:14:49 2009 Static Decrypt: Cipher 'BF-CBC' initialized with
128 bit key
Sun Aug 23 23:14:49 2009 Static Decrypt: Using 160 bit message hash 'SHA1'
for HMAC authentication
Sun Aug 23 23:14:49 2009 LZO compression initialized
Sun Aug 23 23:14:49 2009 TAP-WIN32 device [Conexão local 2] opened:
\\.\Global\{8C9DA9E6-87CD-40A3-B77F-E836EF6B35DE}.tap
Sun Aug 23 23:14:49 2009 TAP-Win32 Driver Version 8.4
Sun Aug 23 23:14:49 2009 TAP-Win32 MTU=1500
Sun Aug 23 23:14:49 2009 Notified TAP-Win32 driver to set a DHCP IP/netmask
of 10.0.0.2/255.255.255.252 on interface
{8C9DA9E6-87CD-40A3-B77F-E836EF6B35DE} [DHCP-serv: 10.0.0.1, lease-time:
31536000]
Sun Aug 23 23:14:50 2009 Successful ARP Flush on interface [3]
{8C9DA9E6-87CD-40A3-B77F-E836EF6B35DE}
Sun Aug 23 23:14:50 2009 Data Channel MTU parms [ L:1545 D:1450 EF:45 EB:135
ET:0 EL:0 AF:3/1 ]
Sun Aug 23 23:14:50 2009 Local Options hash (VER=V4): 'f1025742'
Sun Aug 23 23:14:50 2009 Expected Remote Options hash (VER=V4): '099d04aa'
Sun Aug 23 23:14:50 2009 UDPv4 link local (bound): [undef]:1194
Sun Aug 23 23:14:50 2009 UDPv4 link remote: XXX.XXX.XXX.XXX:1194
Sun Aug 23 23:15:01 2009 Peer Connection Initiated with XXX.XXX.XXX.XXX:1194
Sun Aug 23 23:15:02 2009 TEST ROUTES: 0/0 succeeded len=-1 ret=1 a=0 u/d=up
Sun Aug 23 23:15:02 2009 Initialization Sequence Completed
Agradeço a ajuda !!!
Armando
2009/8/23 Marley Bacelar <marleybacelar em gmail.com>
> Verifica no log de conexão do cliente se tem a seguinte linha:
>
> route add -net 192.168.0.0 mask 255.255.255.0 gw 10.0.0.1
>
>
>
> --
> Marley Bacelar
> Project Fedora Ambassador
> VCP, VSP. VTSP., ITILF
> irc.freenode.net - #fedora-br - #vmware - dearka
> marleybacelar em gmail.com
> Maranhão - Brasil
> 2009/8/23 Armando Barsotini Neto <a.barsotini em gmail.com>
>
>> Olá Marley...
>> A rede do servidor é 192.168.0.X sendo assim, adicionei o comando no *
>> server.conf* do servidor da VPN:
>>
>> *push "route 192.168.0.0 255.255.255.0 10.0.0.1"*
>>
>> Porém, o cliente da VPN ainda não consegue pingar as máquinas da rede do
>> servidor, somente o próprio servidor...
>>
>> OBS: se na máquina cliente eu rodar o comando no DOS:
>>
>> *route add 192.168.0.0 mask 255.255.255.0 10.0.0.1*
>> *
>> *
>> O cliente passa a pingar as máquinas pra dentro da rede do servidor !!!
>>
>> Onde será que estou errando ????
>>
>> Agradeço a quem puder ajudar !!!
>>
>> Armando!
>>
>>
>> 2009/8/23 Marley Bacelar <marleybacelar em gmail.com>
>>
>>> No teu caso meu brother é só colocar no conf do servidor o seguinte:
>>>
>>> push "route 192.168.2.0 255.255.255.0 10.0.0.1"
>>>
>>> --
>>> Marley Bacelar
>>> Project Fedora Ambassador
>>> VCP, VSP. VTSP., ITILF
>>> irc.freenode.net - #fedora-br - #vmware - dearka
>>> marleybacelar em gmail.com
>>> Maranhão - Brasil
>>>
>>>
>>> 2009/8/23 Armando Barsotini Neto <a.barsotini em gmail.com>
>>>
>>> Bom Dia!
>>>> Marley... poderia dar um exemplo de como colocar essa rota no arquivos
>>>> de configuração ???
>>>>
>>>> Procurei mas não encontrei.... se puder colar aqui esse arquivos de
>>>> configuração fico grato !!!
>>>>
>>>> Att,
>>>>
>>>> Armando!
>>>>
>>>>
>>>> 2009/8/23 Marley Bacelar <marleybacelar em gmail.com>
>>>>
>>>> Tu pode colocar essas rotas dentro do arquivo de conf do servidor
>>>>> openvpn ou se quiser personalizar por usuário, pode criar um arquivo de rota
>>>>> para cada usuário. criando um arquivo com o nome do certificado gerado.
>>>>>
>>>>>
>>>>> 2009/8/22 Armando Barsotini Neto <a.barsotini em gmail.com>
>>>>>
>>>>>> PROBLEMA RESOLVIDO !!!!
>>>>>> Adicionei na maquina cliente:
>>>>>>
>>>>>> *route add 192.168.0.0 mask 255.255.255.0 10.0.0.1*
>>>>>>
>>>>>> e funcionou !!!
>>>>>>
>>>>>> Fica ai nossa contribuição para a comunidade FEDORA
>>>>>>
>>>>>> Att,
>>>>>>
>>>>>> Armando!
>>>>>>
>>>>>>
>>>>>>
>>>>>> 2009/8/22 Armando Barsotini Neto <a.barsotini em gmail.com>
>>>>>>
>>>>>> Pessoal...
>>>>>>> Fiz os testes com o OPENVPN e funcionou !!! Porém.. (pra variar)
>>>>>>> estou com um problema... =(
>>>>>>>
>>>>>>> Segue o escopo abaixo:
>>>>>>>
>>>>>>> Rede da Estação = 192.168.*1*.X
>>>>>>> IP Estação (OPENVPN) = *10.0.0.2*
>>>>>>>
>>>>>>> Rede Empresa = 192.168.*0*.X
>>>>>>> Servidor da VPN (OPENVPN) = *10.0.0.1*
>>>>>>>
>>>>>>> Até ai tudo bem...
>>>>>>>
>>>>>>> Porém, só consigo pingar entre os 2 (estação e servidor)....
>>>>>>>
>>>>>>> Não consigo por exemplo, pingar da estação uma máquina que esteja
>>>>>>> dentro da rede do servidor.
>>>>>>>
>>>>>>> E agora ???
>>>>>>>
>>>>>>> Agradeço a quem puder me ajudar !!!!
>>>>>>>
>>>>>>> Att,
>>>>>>>
>>>>>>> Armando!
>>>>>>>
>>>>>>>
>>>>>>> 2009/8/17 Armando Barsotini Neto <a.barsotini em gmail.com>
>>>>>>>
>>>>>>>> Olá...
>>>>>>>> "Use default gateway on remote network" já utilizei MARCADA e
>>>>>>>> DESMARCADA !!!!
>>>>>>>>
>>>>>>>> Mesmo assim não funcionou !!!!
>>>>>>>>
>>>>>>>> Quanto ao roteamento, vou dar uma verificada e passo o resultado
>>>>>>>> depois...
>>>>>>>>
>>>>>>>> Att,
>>>>>>>>
>>>>>>>> Armando!
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>> 2009/8/17 Marley Bacelar <marleybacelar em gmail.com>
>>>>>>>>
>>>>>>>>> Opa,
>>>>>>>>>
>>>>>>>>> Armando realmente tenho que ver como fica a configuração, porque
>>>>>>>>> nesse ambiente do artigo que lhe passei o Link, o servidor VPN é Windows
>>>>>>>>> assim como os clientes. Você ja verificou como ficam as rotas depois que
>>>>>>>>> você conecta na VPN com a opção "Use default gateway on remote network"
>>>>>>>>> desmarcada?
>>>>>>>>>
>>>>>>>>> --
>>>>>>>>> Marley Bacelar
>>>>>>>>> Project Fedora Ambassador
>>>>>>>>> VCP, VSP. VTSP., ITILF
>>>>>>>>> irc.freenode.net - #fedora-br - #vmware - dearka
>>>>>>>>> marleybacelar em gmail.com
>>>>>>>>> Maranhão - Brasil
>>>>>>>>>
>>>>>>>>> 2009/8/17 Armando Barsotini Neto <a.barsotini em gmail.com>
>>>>>>>>>
>>>>>>>>>> Olá,
>>>>>>>>>> Marley, conforme informado no inicio do post eu já havia feito
>>>>>>>>>> essa tentativa:
>>>>>>>>>>
>>>>>>>>>> DESMARCAR: “Use default gateway on remote network”
>>>>>>>>>>
>>>>>>>>>> Porém, quando desmarco essa opção, não consigo mais pingar o
>>>>>>>>>> servidor da VPN.... nem qualquer outra máquina do lado da rede do
>>>>>>>>>> servidor.....
>>>>>>>>>>
>>>>>>>>>> Se volto e marco essa opção, pingo as máquinas do lado do servidor
>>>>>>>>>> normalmente.... porém, a navegação também sai pelo Gateway do servidor:
>>>>>>>>>>
>>>>>>>>>> Fiz os teste com o tracert e quando essa opção está ativada o
>>>>>>>>>> primeiro salto na máquina do cliente da VPN é o IP do servidor.
>>>>>>>>>>
>>>>>>>>>> Se desmarco, ele sai pelo GW da máquina cliente, porem, não pinga
>>>>>>>>>> mais as máquinas da rede do servidor (VPN)
>>>>>>>>>>
>>>>>>>>>> Então, creio que o problema deve estar na configuração do PPTP do
>>>>>>>>>> servidor linux FEDORA....
>>>>>>>>>>
>>>>>>>>>> Será que deve ser feita alguma configuração com IP RU ?
>>>>>>>>>>
>>>>>>>>>> Armando
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>> 2009/8/17 Marley Bacelar <marleybacelar em gmail.com>
>>>>>>>>>>
>>>>>>>>>>> Segue abaixo como configurar no cliente para usar "Split Tunnel"
>>>>>>>>>>> ao invés de usar "All to Tunnel":
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>> http://www.isinc.com/2008/04/11/configuring-a-split-tunnel-pptp-vpn-in-windows-vista/
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>> --
>>>>>>>>>>> Marley Bacelar
>>>>>>>>>>> Project Fedora Ambassador
>>>>>>>>>>> VCP, VSP. VTSP., ITILF
>>>>>>>>>>> irc.freenode.net - #fedora-br - #vmware - dearka
>>>>>>>>>>> marleybacelar em gmail.com
>>>>>>>>>>> Maranhão - Brasil
>>>>>>>>>>>
>>>>>>>>>>> 2009/8/17 Marley Bacelar <marleybacelar em gmail.com>
>>>>>>>>>>>
>>>>>>>>>>> Grande Armando,
>>>>>>>>>>>>
>>>>>>>>>>>> Os teus clientes dessa VPN utilizam Windows XP? Pois na
>>>>>>>>>>>> configuração do cliente voce pode desabilitar o All To Tunel, agora no
>>>>>>>>>>>> servidor posso verificar para voce.
>>>>>>>>>>>>
>>>>>>>>>>>> --
>>>>>>>>>>>> Marley Bacelar
>>>>>>>>>>>> Project Fedora Ambassador
>>>>>>>>>>>> VCP, VSP. VTSP., ITILF
>>>>>>>>>>>> irc.freenode.net - #fedora-br - #vmware - dearka
>>>>>>>>>>>> marleybacelar em gmail.com
>>>>>>>>>>>> Maranhão - Brasil
>>>>>>>>>>>>
>>>>>>>>>>>> 2009/8/17 Armando Neto <a.barsotini em gmail.com>
>>>>>>>>>>>>
>>>>>>>>>>>> Olá...
>>>>>>>>>>>>>
>>>>>>>>>>>>> Então, primeiramente preciso desativar o "all to tunell" do
>>>>>>>>>>>>> pptp...
>>>>>>>>>>>>>
>>>>>>>>>>>>> Alguém me ajuda !!!!
>>>>>>>>>>>>>
>>>>>>>>>>>>> Atenciosamente,
>>>>>>>>>>>>> Armando Barsotini Neto
>>>>>>>>>>>>>
>>>>>>>>>>>>> Em 17/08/2009, às 10:26, Marley Bacelar <
>>>>>>>>>>>>> marleybacelar em gmail.com> escreveu:
>>>>>>>>>>>>>
>>>>>>>>>>>>> Testa ai Armando, qualque duvida com configuração ou
>>>>>>>>>>>>> instalação posta aqui que tentaremos lhe ajudar.
>>>>>>>>>>>>>
>>>>>>>>>>>>> --
>>>>>>>>>>>>> Marley Bacelar
>>>>>>>>>>>>> Project Fedora Ambassador
>>>>>>>>>>>>> VCP, VSP. VTSP., ITILF
>>>>>>>>>>>>> <http://irc.freenode.net/>irc.freenode.net - #fedora-br -
>>>>>>>>>>>>> #vmware - dearka
>>>>>>>>>>>>> <marleybacelar em gmail.com>marleybacelar em gmail.com
>>>>>>>>>>>>> Maranhão - Brasil
>>>>>>>>>>>>>
>>>>>>>>>>>>> 2009/8/17 Heracias Bezerra < <heracias em hotmail.com>
>>>>>>>>>>>>> heracias em hotmail.com>
>>>>>>>>>>>>>
>>>>>>>>>>>>>> Pode sim, sem problema, tanto fixo quanto dinâmico.
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> *Heracias B. L. Neto.
>>>>>>>>>>>>>> Project Fedora Ambassador
>>>>>>>>>>>>>> LPCI-I, Consultor em Segurança da Informação.
>>>>>>>>>>>>>> * * <heracias em fedoraproject.org>heracias em fedoraproject.org
>>>>>>>>>>>>>> *
>>>>>>>>>>>>>> **
>>>>>>>>>>>>>> *Fone:+559888176613
>>>>>>>>>>>>>> <https://fedoraproject.org/wiki/User:Heracias>
>>>>>>>>>>>>>> https://fedoraproject.org/wiki/User:Heracias /
>>>>>>>>>>>>>> <http://www.linkedin.com/pub/10/3a8/945>
>>>>>>>>>>>>>> http://www.linkedin.com/pub/10/3a8/945*
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> ------------------------------
>>>>>>>>>>>>>> Date: Mon, 17 Aug 2009 10:00:31 -0300
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Subject: Re: [Fedora-users-br] VPN no fedora
>>>>>>>>>>>>>> From: <a.barsotini em gmail.com>a.barsotini em gmail.com
>>>>>>>>>>>>>> To: <fedora-users-br em redhat.com>fedora-users-br em redhat.com
>>>>>>>>>>>>>> CC:
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Então...
>>>>>>>>>>>>>> Na matriz tenho IP FIXO... nos cliente que se conectam a VPN
>>>>>>>>>>>>>> não (é IP dinâmico)... isso teria problemas em utilizar a OPENVPN ????
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Matriz = SERVIDOR LINUX
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Clientes = XP e VISTA
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Se funcionar com IP dinâmico nos clientes eu poderia
>>>>>>>>>>>>>> testar.... O que você me diz ?
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Att,
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Armando!
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> 2009/8/17 Heracias Bezerra < <heracias em hotmail.com>
>>>>>>>>>>>>>> heracias em hotmail.com>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> OK, vou reativar minha máquina virtual e tentar configurar a
>>>>>>>>>>>>>> mesma para usar desta forma e te mandar o conf.
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> PS: Você não gostaria de usar a openvpn, ela já vem sem a
>>>>>>>>>>>>>> configuração ALL TO TUNNEL e usa certificado digital.
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> *Heracias B. L. Neto.
>>>>>>>>>>>>>> Project Fedora Ambassador
>>>>>>>>>>>>>> LPCI-I, Consultor em Segurança da Informação.
>>>>>>>>>>>>>> * * <heracias em fedoraproject.org>heracias em fedoraproject.org
>>>>>>>>>>>>>> *
>>>>>>>>>>>>>> **
>>>>>>>>>>>>>> *Fone:+559888176613
>>>>>>>>>>>>>> <https://fedoraproject.org/wiki/User:Heracias>
>>>>>>>>>>>>>> https://fedoraproject.org/wiki/User:Heracias /
>>>>>>>>>>>>>> <http://www.linkedin.com/pub/10/3a8/945>
>>>>>>>>>>>>>> http://www.linkedin.com/pub/10/3a8/945*
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> ------------------------------
>>>>>>>>>>>>>> Date: Mon, 17 Aug 2009 09:39:08 -0300
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Subject: Re: [Fedora-users-br] VPN no fedora
>>>>>>>>>>>>>> From: <a.barsotini em gmail.com>a.barsotini em gmail.com
>>>>>>>>>>>>>> To: <fedora-users-br em redhat.com>fedora-users-br em redhat.com
>>>>>>>>>>>>>> CC:
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Olá...
>>>>>>>>>>>>>> Então.. sou sim... eu tenho nesse servidor (FEDORA) o squid
>>>>>>>>>>>>>> funcionando para 20 usuários...
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Agora surgiu a necessidade de habilitar a VPN, e eu consegui
>>>>>>>>>>>>>> fazer, porém da forma apresentada ("ALL TO TUNEL")
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Só que não tem lógica o CLIENTE utilizar o LINK do servidor
>>>>>>>>>>>>>> pra NAVEGAR NA INTERNET... Somente queria que a VPN trocasse dados da REDE.
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> OBS: Não tenho interface gráfica habilitada nesse servidor
>>>>>>>>>>>>>> (Depois que você me passou a dica do "all to tunel" eu pesquisei no google
>>>>>>>>>>>>>> e encontrei algumas formas de configuração dessa opção, mas somente via
>>>>>>>>>>>>>> interface gráfica...
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> O que eu tenho no momento são 2 arquivos: pptpd.conf e
>>>>>>>>>>>>>> options.pptpd (REVIREI esses 2 arquivos e não encontrei nada referente a
>>>>>>>>>>>>>> "all to tunel")
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Agradeço se puder me dar uma luz....
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Armando!
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> 2009/8/17 Heracias Bezerra < <heracias em hotmail.com>
>>>>>>>>>>>>>> heracias em hotmail.com>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Armando,
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> utilizei a VPN PPTP por muito tempo e sempre foi da forma all
>>>>>>>>>>>>>> to tunnel. Vou verificar aqui no meu servidor antigo se tem com fazer
>>>>>>>>>>>>>> somente para rotas de redes específicas da VPN.
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> OBS: Você é o administrador da VPN?
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> *Heracias B. L. Neto.
>>>>>>>>>>>>>> Project Fedora Ambassador
>>>>>>>>>>>>>> LPCI-I, Consultor em Segurança da Informação.
>>>>>>>>>>>>>> * * <heracias em fedoraproject.org>heracias em fedoraproject.org
>>>>>>>>>>>>>> *
>>>>>>>>>>>>>> **
>>>>>>>>>>>>>> *Fone:+559888176613
>>>>>>>>>>>>>> <https://fedoraproject.org/wiki/User:Heracias>
>>>>>>>>>>>>>> https://fedoraproject.org/wiki/User:Heracias /
>>>>>>>>>>>>>> <http://www.linkedin.com/pub/10/3a8/945>
>>>>>>>>>>>>>> http://www.linkedin.com/pub/10/3a8/945*
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> ------------------------------
>>>>>>>>>>>>>> Date: Mon, 17 Aug 2009 09:19:05 -0300
>>>>>>>>>>>>>> Subject: Re: [Fedora-users-br] VPN no fedora
>>>>>>>>>>>>>> From: <a.barsotini em gmail.com>a.barsotini em gmail.com
>>>>>>>>>>>>>> To: <fedora-users-br em redhat.com>fedora-users-br em redhat.com
>>>>>>>>>>>>>> CC:
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Somente complementando:
>>>>>>>>>>>>>> Estou utilizando o windows VISTA no cliente da VPN !!!!
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Armando!
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> 2009/8/17 Armando Barsotini Neto < <a.barsotini em gmail.com>
>>>>>>>>>>>>>> a.barsotini em gmail.com>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Olá... *
>>>>>>>>>>>>>> *
>>>>>>>>>>>>>> Heracias, como devo proceder para mudar isso ????
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Se puder me dar uma dica eu agradeço !!!!
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Armando!
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> 2009/8/17 Heracias Bezerra < <heracias em hotmail.com>
>>>>>>>>>>>>>> heracias em hotmail.com>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Armando,
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> sua vpn deve está configurada para *all to tunnel **ou seja,
>>>>>>>>>>>>>> tudo o tráfego sendo encaminhado para o túnel da VPN.
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> * *Heracias B. L. Neto.
>>>>>>>>>>>>>> Project Fedora Ambassador
>>>>>>>>>>>>>> LPCI-I, Consultor em Segurança da Informação.
>>>>>>>>>>>>>> * * <heracias em fedoraproject.org>heracias em fedoraproject.org
>>>>>>>>>>>>>> *
>>>>>>>>>>>>>> **
>>>>>>>>>>>>>> *Fone:+559888176613
>>>>>>>>>>>>>> <https://fedoraproject.org/wiki/User:Heracias>
>>>>>>>>>>>>>> https://fedoraproject.org/wiki/User:Heracias /
>>>>>>>>>>>>>> <http://www.linkedin.com/pub/10/3a8/945>
>>>>>>>>>>>>>> http://www.linkedin.com/pub/10/3a8/945*
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> ------------------------------
>>>>>>>>>>>>>> Date: Mon, 17 Aug 2009 00:52:37 -0300
>>>>>>>>>>>>>> From: <a.barsotini em gmail.com>a.barsotini em gmail.com
>>>>>>>>>>>>>> To: <fedora-users-br em redhat.com>fedora-users-br em redhat.com
>>>>>>>>>>>>>> Subject: [Fedora-users-br] VPN no fedora
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Olá lista...
>>>>>>>>>>>>>> Pessoal, recentemente estava com problema para configurar uma
>>>>>>>>>>>>>> VPN no FEDORA
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Através de algumas alterações nos arquivos de repositório (com
>>>>>>>>>>>>>> a ajuda dessa lista) consegui baixar o PPTPD via yum...
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Hoje a minha VPN funciona quase que perfeitamente... Estou
>>>>>>>>>>>>>> com problema no GATEWAY das máquinas que conectam nessa VPN.
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Seguinte:
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Quando uma máquina conecta na VPN DO SERVER.... ela passa a
>>>>>>>>>>>>>> utilizar o GW do servidor da VPN.
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Ex: Maquina NÃO conectada na VPN (GW = 192.168.4.1)...
>>>>>>>>>>>>>> Máquina depois de conectar na VPN (GW = 192.168.0.254)
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Fiz os testes com o TRACERT e realmente quando estou conectado
>>>>>>>>>>>>>> na VPN o GW Muda....
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Procurei na INTERNET sobre esse "problema" e mandaram remover
>>>>>>>>>>>>>> a opção de utilizar o GW da VPN nas propriedades da conexão VPN... porém,
>>>>>>>>>>>>>> quando desmarco essa opção, não consigo mais pingar o SERVIDOR e nem o
>>>>>>>>>>>>>> SERVIDOR pinga minha máquina !!!
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Onde estou errando ??? existe alguma solução pra isso ???
>>>>>>>>>>>>>> Ou quando conectar na VPN vou ter sempre que utilizar o GW do SERVIDOR ????
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Agradeço a quem puder me dar uma luz...
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Armando!
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> ------------------------------
>>>>>>>>>>>>>> Conheça os novos produtos Windows Live. Clique aqui!<http://www.windowslive.com.br/>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> --
>>>>>>>>>>>>>> Fedora-users-br mailing list
>>>>>>>>>>>>>> <Fedora-users-br em redhat.com>Fedora-users-br em redhat.com
>>>>>>>>>>>>>> <https://www.redhat.com/mailman/listinfo/fedora-users-br>
>>>>>>>>>>>>>> https://www.redhat.com/mailman/listinfo/fedora-users-br
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> ------------------------------
>>>>>>>>>>>>>> Novo Internet Explorer 8: mais rápido e muito mais seguro. Baixe
>>>>>>>>>>>>>> agora, é grátis!<http://brasil.microsoft.com.br/IE8/mergulhe/?utm_source=MSN;Hotmail&utm_medium=Tagline&utm_campaign=IE8>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> --
>>>>>>>>>>>>>> Fedora-users-br mailing list
>>>>>>>>>>>>>> <Fedora-users-br em redhat.com>Fedora-users-br em redhat.com
>>>>>>>>>>>>>> <https://www.redhat.com/mailman/listinfo/fedora-users-br>
>>>>>>>>>>>>>> https://www.redhat.com/mailman/listinfo/fedora-users-br
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> ------------------------------
>>>>>>>>>>>>>> Quer uma internet mais segura? Baixe agora o novo Internet
>>>>>>>>>>>>>> Explorer 8. É grátis!<http://brasil.microsoft.com.br/IE8/mergulhe/?utm_source=MSN;Hotmail&utm_medium=Tagline&utm_campaign=IE8>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> --
>>>>>>>>>>>>>> Fedora-users-br mailing list
>>>>>>>>>>>>>> <Fedora-users-br em redhat.com>Fedora-users-br em redhat.com
>>>>>>>>>>>>>> <https://www.redhat.com/mailman/listinfo/fedora-users-br>
>>>>>>>>>>>>>> https://www.redhat.com/mailman/listinfo/fedora-users-br
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> ------------------------------
>>>>>>>>>>>>>> Novo Internet Explorer 8: mais rápido e muito mais seguro. Baixe
>>>>>>>>>>>>>> agora, é grátis!<http://brasil.microsoft.com.br/IE8/mergulhe/?utm_source=MSN%3BHotmail&utm_medium=Tagline&utm_campaign=IE8>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> --
>>>>>>>>>>>>>> Fedora-users-br mailing list
>>>>>>>>>>>>>> <Fedora-users-br em redhat.com>Fedora-users-br em redhat.com
>>>>>>>>>>>>>> <https://www.redhat.com/mailman/listinfo/fedora-users-br>
>>>>>>>>>>>>>> https://www.redhat.com/mailman/listinfo/fedora-users-br
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>> --
>>>>>>>>>>>>> Fedora-users-br mailing list
>>>>>>>>>>>>> Fedora-users-br em redhat.com
>>>>>>>>>>>>> https://www.redhat.com/mailman/listinfo/fedora-users-br
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>> --
>>>>>>>>>>>>> Fedora-users-br mailing list
>>>>>>>>>>>>> Fedora-users-br em redhat.com
>>>>>>>>>>>>> https://www.redhat.com/mailman/listinfo/fedora-users-br
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>> --
>>>>>>>>>>> Fedora-users-br mailing list
>>>>>>>>>>> Fedora-users-br em redhat.com
>>>>>>>>>>> https://www.redhat.com/mailman/listinfo/fedora-users-br
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>> --
>>>>>>>>>> Fedora-users-br mailing list
>>>>>>>>>> Fedora-users-br em redhat.com
>>>>>>>>>> https://www.redhat.com/mailman/listinfo/fedora-users-br
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> --
>>>>>>>>> Fedora-users-br mailing list
>>>>>>>>> Fedora-users-br em redhat.com
>>>>>>>>> https://www.redhat.com/mailman/listinfo/fedora-users-br
>>>>>>>>>
>>>>>>>>>
>>>>>>>>
>>>>>>>
>>>>>>
>>>>>> --
>>>>>> Fedora-users-br mailing list
>>>>>> Fedora-users-br em redhat.com
>>>>>> https://www.redhat.com/mailman/listinfo/fedora-users-br
>>>>>>
>>>>>>
>>>>>
>>>>>
>>>>> --
>>>>> Marley Bacelar
>>>>> Project Fedora Ambassador
>>>>> VCP, VSP. VTSP., ITILF
>>>>> irc.freenode.net - #fedora-br - #vmware - dearka
>>>>> marleybacelar em gmail.com
>>>>> Maranhão - Brasil
>>>>>
>>>>> --
>>>>> Fedora-users-br mailing list
>>>>> Fedora-users-br em redhat.com
>>>>> https://www.redhat.com/mailman/listinfo/fedora-users-br
>>>>>
>>>>>
>>>>
>>>> --
>>>> Fedora-users-br mailing list
>>>> Fedora-users-br em redhat.com
>>>> https://www.redhat.com/mailman/listinfo/fedora-users-br
>>>>
>>>>
>>>
>>>
>>>
>>> --
>>> Fedora-users-br mailing list
>>> Fedora-users-br em redhat.com
>>> https://www.redhat.com/mailman/listinfo/fedora-users-br
>>>
>>>
>>
>> --
>> Fedora-users-br mailing list
>> Fedora-users-br em redhat.com
>> https://www.redhat.com/mailman/listinfo/fedora-users-br
>>
>>
>
>
> --
> Fedora-users-br mailing list
> Fedora-users-br em redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-users-br
>
>
-------------- Próxima Parte ----------
Um anexo em HTML foi limpo...
URL: <http://listman.redhat.com/archives/fedora-users-br/attachments/20090823/e320cbc9/attachment.htm>
Mais detalhes sobre a lista de discussão Fedora-users-br