[Fedora-users-br] VPN no fedora
Armando Barsotini Neto
a.barsotini em gmail.com
Seg Ago 24 02:34:19 UTC 2009
Certo...
E agora ??? mais alguma dica ???
E ai lista ??? Será que alguém pode me auxiliar ???
Agradeço!
Att,
Armando!
2009/8/23 Marley Bacelar <marleybacelar em gmail.com>
> Apesar de vc ter colocadoo o push no servidor, por algum motivo ele não
> esta adicionando a rota no cliente no momento da conexão, por isso que só
> funciona quase vc adiciona a rota manualmente.
>
> --
> Marley Bacelar
> Project Fedora Ambassador
> VCP, VSP. VTSP., ITILF
> irc.freenode.net - #fedora-br - #vmware - dearka
> marleybacelar em gmail.com
> Maranhão - Brasil
>
>
> 2009/8/23 Armando Barsotini Neto <a.barsotini em gmail.com>
>
>> Olá...
>> *Segue meu SERVER.CONF e o LOG do cliente mais abaixo:*
>>
>> dev tun
>> proto udp
>> port 1194
>> push "route 192.168.0.0 255.255.255.0 10.0.0.1"
>> ping 15
>> ifconfig 10.0.0.1 10.0.0.2
>> secret static.key
>> comp-lzo
>> verb 3
>> status-version 2
>> status /var/log/openvpn/status.log
>> log /var/log/openvpn/openvpn.log
>>
>>
>>
>> *LOG DO CLIENTE NO MOMENTO DA CONEXÃO ESTABELECIDA:*
>>
>> Sun Aug 23 23:14:49 2009 OpenVPN 2.0.9 Win32-MinGW [SSL] [LZO] built on
>> Oct 1 2006
>> Sun Aug 23 23:14:49 2009 WARNING: --ping should normally be used with
>> --ping-restart or --ping-exit
>> Sun Aug 23 23:14:49 2009 Static Encrypt: Cipher 'BF-CBC' initialized with
>> 128 bit key
>> Sun Aug 23 23:14:49 2009 Static Encrypt: Using 160 bit message hash 'SHA1'
>> for HMAC authentication
>> Sun Aug 23 23:14:49 2009 Static Decrypt: Cipher 'BF-CBC' initialized with
>> 128 bit key
>> Sun Aug 23 23:14:49 2009 Static Decrypt: Using 160 bit message hash 'SHA1'
>> for HMAC authentication
>> Sun Aug 23 23:14:49 2009 LZO compression initialized
>> Sun Aug 23 23:14:49 2009 TAP-WIN32 device [Conexão local 2] opened:
>> \\.\Global\{8C9DA9E6-87CD-40A3-B77F-E836EF6B35DE}.tap
>> Sun Aug 23 23:14:49 2009 TAP-Win32 Driver Version 8.4
>> Sun Aug 23 23:14:49 2009 TAP-Win32 MTU=1500
>> Sun Aug 23 23:14:49 2009 Notified TAP-Win32 driver to set a DHCP
>> IP/netmask of 10.0.0.2/255.255.255.252 on interface
>> {8C9DA9E6-87CD-40A3-B77F-E836EF6B35DE} [DHCP-serv: 10.0.0.1, lease-time:
>> 31536000]
>> Sun Aug 23 23:14:50 2009 Successful ARP Flush on interface [3]
>> {8C9DA9E6-87CD-40A3-B77F-E836EF6B35DE}
>> Sun Aug 23 23:14:50 2009 Data Channel MTU parms [ L:1545 D:1450 EF:45
>> EB:135 ET:0 EL:0 AF:3/1 ]
>> Sun Aug 23 23:14:50 2009 Local Options hash (VER=V4): 'f1025742'
>> Sun Aug 23 23:14:50 2009 Expected Remote Options hash (VER=V4): '099d04aa'
>> Sun Aug 23 23:14:50 2009 UDPv4 link local (bound): [undef]:1194
>> Sun Aug 23 23:14:50 2009 UDPv4 link remote: XXX.XXX.XXX.XXX:1194
>> Sun Aug 23 23:15:01 2009 Peer Connection Initiated with
>> XXX.XXX.XXX.XXX:1194
>> Sun Aug 23 23:15:02 2009 TEST ROUTES: 0/0 succeeded len=-1 ret=1 a=0
>> u/d=up
>> Sun Aug 23 23:15:02 2009 Initialization Sequence Completed
>>
>>
>> Agradeço a ajuda !!!
>>
>> Armando
>>
>>
>> 2009/8/23 Marley Bacelar <marleybacelar em gmail.com>
>>
>>> Verifica no log de conexão do cliente se tem a seguinte linha:
>>>
>>> route add -net 192.168.0.0 mask 255.255.255.0 gw 10.0.0.1
>>>
>>>
>>>
>>> --
>>> Marley Bacelar
>>> Project Fedora Ambassador
>>> VCP, VSP. VTSP., ITILF
>>> irc.freenode.net - #fedora-br - #vmware - dearka
>>> marleybacelar em gmail.com
>>> Maranhão - Brasil
>>> 2009/8/23 Armando Barsotini Neto <a.barsotini em gmail.com>
>>>
>>>> Olá Marley...
>>>> A rede do servidor é 192.168.0.X sendo assim, adicionei o comando no
>>>> *server.conf* do servidor da VPN:
>>>>
>>>> *push "route 192.168.0.0 255.255.255.0 10.0.0.1"*
>>>>
>>>> Porém, o cliente da VPN ainda não consegue pingar as máquinas da rede do
>>>> servidor, somente o próprio servidor...
>>>>
>>>> OBS: se na máquina cliente eu rodar o comando no DOS:
>>>>
>>>> *route add 192.168.0.0 mask 255.255.255.0 10.0.0.1*
>>>> *
>>>> *
>>>> O cliente passa a pingar as máquinas pra dentro da rede do servidor !!!
>>>>
>>>> Onde será que estou errando ????
>>>>
>>>> Agradeço a quem puder ajudar !!!
>>>>
>>>> Armando!
>>>>
>>>>
>>>> 2009/8/23 Marley Bacelar <marleybacelar em gmail.com>
>>>>
>>>>> No teu caso meu brother é só colocar no conf do servidor o seguinte:
>>>>>
>>>>> push "route 192.168.2.0 255.255.255.0 10.0.0.1"
>>>>>
>>>>> --
>>>>> Marley Bacelar
>>>>> Project Fedora Ambassador
>>>>> VCP, VSP. VTSP., ITILF
>>>>> irc.freenode.net - #fedora-br - #vmware - dearka
>>>>> marleybacelar em gmail.com
>>>>> Maranhão - Brasil
>>>>>
>>>>>
>>>>> 2009/8/23 Armando Barsotini Neto <a.barsotini em gmail.com>
>>>>>
>>>>> Bom Dia!
>>>>>> Marley... poderia dar um exemplo de como colocar essa rota no
>>>>>> arquivos de configuração ???
>>>>>>
>>>>>> Procurei mas não encontrei.... se puder colar aqui esse arquivos de
>>>>>> configuração fico grato !!!
>>>>>>
>>>>>> Att,
>>>>>>
>>>>>> Armando!
>>>>>>
>>>>>>
>>>>>> 2009/8/23 Marley Bacelar <marleybacelar em gmail.com>
>>>>>>
>>>>>> Tu pode colocar essas rotas dentro do arquivo de conf do servidor
>>>>>>> openvpn ou se quiser personalizar por usuário, pode criar um arquivo de rota
>>>>>>> para cada usuário. criando um arquivo com o nome do certificado gerado.
>>>>>>>
>>>>>>>
>>>>>>> 2009/8/22 Armando Barsotini Neto <a.barsotini em gmail.com>
>>>>>>>
>>>>>>>> PROBLEMA RESOLVIDO !!!!
>>>>>>>> Adicionei na maquina cliente:
>>>>>>>>
>>>>>>>> *route add 192.168.0.0 mask 255.255.255.0 10.0.0.1*
>>>>>>>>
>>>>>>>> e funcionou !!!
>>>>>>>>
>>>>>>>> Fica ai nossa contribuição para a comunidade FEDORA
>>>>>>>>
>>>>>>>> Att,
>>>>>>>>
>>>>>>>> Armando!
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>> 2009/8/22 Armando Barsotini Neto <a.barsotini em gmail.com>
>>>>>>>>
>>>>>>>> Pessoal...
>>>>>>>>> Fiz os testes com o OPENVPN e funcionou !!! Porém.. (pra variar)
>>>>>>>>> estou com um problema... =(
>>>>>>>>>
>>>>>>>>> Segue o escopo abaixo:
>>>>>>>>>
>>>>>>>>> Rede da Estação = 192.168.*1*.X
>>>>>>>>> IP Estação (OPENVPN) = *10.0.0.2*
>>>>>>>>>
>>>>>>>>> Rede Empresa = 192.168.*0*.X
>>>>>>>>> Servidor da VPN (OPENVPN) = *10.0.0.1*
>>>>>>>>>
>>>>>>>>> Até ai tudo bem...
>>>>>>>>>
>>>>>>>>> Porém, só consigo pingar entre os 2 (estação e servidor)....
>>>>>>>>>
>>>>>>>>> Não consigo por exemplo, pingar da estação uma máquina que esteja
>>>>>>>>> dentro da rede do servidor.
>>>>>>>>>
>>>>>>>>> E agora ???
>>>>>>>>>
>>>>>>>>> Agradeço a quem puder me ajudar !!!!
>>>>>>>>>
>>>>>>>>> Att,
>>>>>>>>>
>>>>>>>>> Armando!
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> 2009/8/17 Armando Barsotini Neto <a.barsotini em gmail.com>
>>>>>>>>>
>>>>>>>>>> Olá...
>>>>>>>>>> "Use default gateway on remote network" já utilizei MARCADA e
>>>>>>>>>> DESMARCADA !!!!
>>>>>>>>>>
>>>>>>>>>> Mesmo assim não funcionou !!!!
>>>>>>>>>>
>>>>>>>>>> Quanto ao roteamento, vou dar uma verificada e passo o resultado
>>>>>>>>>> depois...
>>>>>>>>>>
>>>>>>>>>> Att,
>>>>>>>>>>
>>>>>>>>>> Armando!
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>> 2009/8/17 Marley Bacelar <marleybacelar em gmail.com>
>>>>>>>>>>
>>>>>>>>>>> Opa,
>>>>>>>>>>>
>>>>>>>>>>> Armando realmente tenho que ver como fica a configuração, porque
>>>>>>>>>>> nesse ambiente do artigo que lhe passei o Link, o servidor VPN é Windows
>>>>>>>>>>> assim como os clientes. Você ja verificou como ficam as rotas depois que
>>>>>>>>>>> você conecta na VPN com a opção "Use default gateway on remote network"
>>>>>>>>>>> desmarcada?
>>>>>>>>>>>
>>>>>>>>>>> --
>>>>>>>>>>> Marley Bacelar
>>>>>>>>>>> Project Fedora Ambassador
>>>>>>>>>>> VCP, VSP. VTSP., ITILF
>>>>>>>>>>> irc.freenode.net - #fedora-br - #vmware - dearka
>>>>>>>>>>> marleybacelar em gmail.com
>>>>>>>>>>> Maranhão - Brasil
>>>>>>>>>>>
>>>>>>>>>>> 2009/8/17 Armando Barsotini Neto <a.barsotini em gmail.com>
>>>>>>>>>>>
>>>>>>>>>>>> Olá,
>>>>>>>>>>>> Marley, conforme informado no inicio do post eu já havia feito
>>>>>>>>>>>> essa tentativa:
>>>>>>>>>>>>
>>>>>>>>>>>> DESMARCAR: “Use default gateway on remote network”
>>>>>>>>>>>>
>>>>>>>>>>>> Porém, quando desmarco essa opção, não consigo mais pingar o
>>>>>>>>>>>> servidor da VPN.... nem qualquer outra máquina do lado da rede do
>>>>>>>>>>>> servidor.....
>>>>>>>>>>>>
>>>>>>>>>>>> Se volto e marco essa opção, pingo as máquinas do lado do
>>>>>>>>>>>> servidor normalmente.... porém, a navegação também sai pelo Gateway do
>>>>>>>>>>>> servidor:
>>>>>>>>>>>>
>>>>>>>>>>>> Fiz os teste com o tracert e quando essa opção está ativada o
>>>>>>>>>>>> primeiro salto na máquina do cliente da VPN é o IP do servidor.
>>>>>>>>>>>>
>>>>>>>>>>>> Se desmarco, ele sai pelo GW da máquina cliente, porem, não
>>>>>>>>>>>> pinga mais as máquinas da rede do servidor (VPN)
>>>>>>>>>>>>
>>>>>>>>>>>> Então, creio que o problema deve estar na configuração do PPTP
>>>>>>>>>>>> do servidor linux FEDORA....
>>>>>>>>>>>>
>>>>>>>>>>>> Será que deve ser feita alguma configuração com IP RU ?
>>>>>>>>>>>>
>>>>>>>>>>>> Armando
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>> 2009/8/17 Marley Bacelar <marleybacelar em gmail.com>
>>>>>>>>>>>>
>>>>>>>>>>>>> Segue abaixo como configurar no cliente para usar "Split
>>>>>>>>>>>>> Tunnel" ao invés de usar "All to Tunnel":
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>> http://www.isinc.com/2008/04/11/configuring-a-split-tunnel-pptp-vpn-in-windows-vista/
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>> --
>>>>>>>>>>>>> Marley Bacelar
>>>>>>>>>>>>> Project Fedora Ambassador
>>>>>>>>>>>>> VCP, VSP. VTSP., ITILF
>>>>>>>>>>>>> irc.freenode.net - #fedora-br - #vmware - dearka
>>>>>>>>>>>>> marleybacelar em gmail.com
>>>>>>>>>>>>> Maranhão - Brasil
>>>>>>>>>>>>>
>>>>>>>>>>>>> 2009/8/17 Marley Bacelar <marleybacelar em gmail.com>
>>>>>>>>>>>>>
>>>>>>>>>>>>> Grande Armando,
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Os teus clientes dessa VPN utilizam Windows XP? Pois na
>>>>>>>>>>>>>> configuração do cliente voce pode desabilitar o All To Tunel, agora no
>>>>>>>>>>>>>> servidor posso verificar para voce.
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> --
>>>>>>>>>>>>>> Marley Bacelar
>>>>>>>>>>>>>> Project Fedora Ambassador
>>>>>>>>>>>>>> VCP, VSP. VTSP., ITILF
>>>>>>>>>>>>>> irc.freenode.net - #fedora-br - #vmware - dearka
>>>>>>>>>>>>>> marleybacelar em gmail.com
>>>>>>>>>>>>>> Maranhão - Brasil
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> 2009/8/17 Armando Neto <a.barsotini em gmail.com>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Olá...
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> Então, primeiramente preciso desativar o "all to tunell" do
>>>>>>>>>>>>>>> pptp...
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> Alguém me ajuda !!!!
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> Atenciosamente,
>>>>>>>>>>>>>>> Armando Barsotini Neto
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> Em 17/08/2009, às 10:26, Marley Bacelar <
>>>>>>>>>>>>>>> marleybacelar em gmail.com> escreveu:
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> Testa ai Armando, qualque duvida com configuração ou
>>>>>>>>>>>>>>> instalação posta aqui que tentaremos lhe ajudar.
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>> Marley Bacelar
>>>>>>>>>>>>>>> Project Fedora Ambassador
>>>>>>>>>>>>>>> VCP, VSP. VTSP., ITILF
>>>>>>>>>>>>>>> <http://irc.freenode.net/>irc.freenode.net - #fedora-br -
>>>>>>>>>>>>>>> #vmware - dearka
>>>>>>>>>>>>>>> <marleybacelar em gmail.com>marleybacelar em gmail.com
>>>>>>>>>>>>>>> Maranhão - Brasil
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> 2009/8/17 Heracias Bezerra < <heracias em hotmail.com>
>>>>>>>>>>>>>>> heracias em hotmail.com>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Pode sim, sem problema, tanto fixo quanto dinâmico.
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> *Heracias B. L. Neto.
>>>>>>>>>>>>>>>> Project Fedora Ambassador
>>>>>>>>>>>>>>>> LPCI-I, Consultor em Segurança da Informação.
>>>>>>>>>>>>>>>> * * <heracias em fedoraproject.org>heracias em fedoraproject.org
>>>>>>>>>>>>>>>> *
>>>>>>>>>>>>>>>> **
>>>>>>>>>>>>>>>> *Fone:+559888176613
>>>>>>>>>>>>>>>> <https://fedoraproject.org/wiki/User:Heracias>
>>>>>>>>>>>>>>>> https://fedoraproject.org/wiki/User:Heracias /
>>>>>>>>>>>>>>>> <http://www.linkedin.com/pub/10/3a8/945>
>>>>>>>>>>>>>>>> http://www.linkedin.com/pub/10/3a8/945*
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> ------------------------------
>>>>>>>>>>>>>>>> Date: Mon, 17 Aug 2009 10:00:31 -0300
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Subject: Re: [Fedora-users-br] VPN no fedora
>>>>>>>>>>>>>>>> From: <a.barsotini em gmail.com>a.barsotini em gmail.com
>>>>>>>>>>>>>>>> To: <fedora-users-br em redhat.com>fedora-users-br em redhat.com
>>>>>>>>>>>>>>>> CC:
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Então...
>>>>>>>>>>>>>>>> Na matriz tenho IP FIXO... nos cliente que se conectam a
>>>>>>>>>>>>>>>> VPN não (é IP dinâmico)... isso teria problemas em utilizar a OPENVPN ????
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Matriz = SERVIDOR LINUX
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Clientes = XP e VISTA
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Se funcionar com IP dinâmico nos clientes eu poderia
>>>>>>>>>>>>>>>> testar.... O que você me diz ?
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Att,
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Armando!
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> 2009/8/17 Heracias Bezerra < <heracias em hotmail.com>
>>>>>>>>>>>>>>>> heracias em hotmail.com>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> OK, vou reativar minha máquina virtual e tentar configurar a
>>>>>>>>>>>>>>>> mesma para usar desta forma e te mandar o conf.
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> PS: Você não gostaria de usar a openvpn, ela já vem sem a
>>>>>>>>>>>>>>>> configuração ALL TO TUNNEL e usa certificado digital.
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> *Heracias B. L. Neto.
>>>>>>>>>>>>>>>> Project Fedora Ambassador
>>>>>>>>>>>>>>>> LPCI-I, Consultor em Segurança da Informação.
>>>>>>>>>>>>>>>> * * <heracias em fedoraproject.org>heracias em fedoraproject.org
>>>>>>>>>>>>>>>> *
>>>>>>>>>>>>>>>> **
>>>>>>>>>>>>>>>> *Fone:+559888176613
>>>>>>>>>>>>>>>> <https://fedoraproject.org/wiki/User:Heracias>
>>>>>>>>>>>>>>>> https://fedoraproject.org/wiki/User:Heracias /
>>>>>>>>>>>>>>>> <http://www.linkedin.com/pub/10/3a8/945>
>>>>>>>>>>>>>>>> http://www.linkedin.com/pub/10/3a8/945*
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> ------------------------------
>>>>>>>>>>>>>>>> Date: Mon, 17 Aug 2009 09:39:08 -0300
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Subject: Re: [Fedora-users-br] VPN no fedora
>>>>>>>>>>>>>>>> From: <a.barsotini em gmail.com>a.barsotini em gmail.com
>>>>>>>>>>>>>>>> To: <fedora-users-br em redhat.com>fedora-users-br em redhat.com
>>>>>>>>>>>>>>>> CC:
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Olá...
>>>>>>>>>>>>>>>> Então.. sou sim... eu tenho nesse servidor (FEDORA) o
>>>>>>>>>>>>>>>> squid funcionando para 20 usuários...
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Agora surgiu a necessidade de habilitar a VPN, e eu consegui
>>>>>>>>>>>>>>>> fazer, porém da forma apresentada ("ALL TO TUNEL")
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Só que não tem lógica o CLIENTE utilizar o LINK do servidor
>>>>>>>>>>>>>>>> pra NAVEGAR NA INTERNET... Somente queria que a VPN trocasse dados da REDE.
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> OBS: Não tenho interface gráfica habilitada nesse servidor
>>>>>>>>>>>>>>>> (Depois que você me passou a dica do "all to tunel" eu pesquisei no google
>>>>>>>>>>>>>>>> e encontrei algumas formas de configuração dessa opção, mas somente via
>>>>>>>>>>>>>>>> interface gráfica...
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> O que eu tenho no momento são 2 arquivos: pptpd.conf e
>>>>>>>>>>>>>>>> options.pptpd (REVIREI esses 2 arquivos e não encontrei nada referente a
>>>>>>>>>>>>>>>> "all to tunel")
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Agradeço se puder me dar uma luz....
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Armando!
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> 2009/8/17 Heracias Bezerra < <heracias em hotmail.com>
>>>>>>>>>>>>>>>> heracias em hotmail.com>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Armando,
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> utilizei a VPN PPTP por muito tempo e sempre foi da forma
>>>>>>>>>>>>>>>> all to tunnel. Vou verificar aqui no meu servidor antigo se tem com fazer
>>>>>>>>>>>>>>>> somente para rotas de redes específicas da VPN.
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> OBS: Você é o administrador da VPN?
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> *Heracias B. L. Neto.
>>>>>>>>>>>>>>>> Project Fedora Ambassador
>>>>>>>>>>>>>>>> LPCI-I, Consultor em Segurança da Informação.
>>>>>>>>>>>>>>>> * * <heracias em fedoraproject.org>heracias em fedoraproject.org
>>>>>>>>>>>>>>>> *
>>>>>>>>>>>>>>>> **
>>>>>>>>>>>>>>>> *Fone:+559888176613
>>>>>>>>>>>>>>>> <https://fedoraproject.org/wiki/User:Heracias>
>>>>>>>>>>>>>>>> https://fedoraproject.org/wiki/User:Heracias /
>>>>>>>>>>>>>>>> <http://www.linkedin.com/pub/10/3a8/945>
>>>>>>>>>>>>>>>> http://www.linkedin.com/pub/10/3a8/945*
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> ------------------------------
>>>>>>>>>>>>>>>> Date: Mon, 17 Aug 2009 09:19:05 -0300
>>>>>>>>>>>>>>>> Subject: Re: [Fedora-users-br] VPN no fedora
>>>>>>>>>>>>>>>> From: <a.barsotini em gmail.com>a.barsotini em gmail.com
>>>>>>>>>>>>>>>> To: <fedora-users-br em redhat.com>fedora-users-br em redhat.com
>>>>>>>>>>>>>>>> CC:
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Somente complementando:
>>>>>>>>>>>>>>>> Estou utilizando o windows VISTA no cliente da VPN !!!!
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Armando!
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> 2009/8/17 Armando Barsotini Neto < <a.barsotini em gmail.com>
>>>>>>>>>>>>>>>> a.barsotini em gmail.com>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Olá... *
>>>>>>>>>>>>>>>> *
>>>>>>>>>>>>>>>> Heracias, como devo proceder para mudar isso ????
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Se puder me dar uma dica eu agradeço !!!!
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Armando!
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> 2009/8/17 Heracias Bezerra < <heracias em hotmail.com>
>>>>>>>>>>>>>>>> heracias em hotmail.com>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Armando,
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> sua vpn deve está configurada para *all to tunnel **ou
>>>>>>>>>>>>>>>> seja, tudo o tráfego sendo encaminhado para o túnel da VPN.
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> * *Heracias B. L. Neto.
>>>>>>>>>>>>>>>> Project Fedora Ambassador
>>>>>>>>>>>>>>>> LPCI-I, Consultor em Segurança da Informação.
>>>>>>>>>>>>>>>> * * <heracias em fedoraproject.org>heracias em fedoraproject.org
>>>>>>>>>>>>>>>> *
>>>>>>>>>>>>>>>> **
>>>>>>>>>>>>>>>> *Fone:+559888176613
>>>>>>>>>>>>>>>> <https://fedoraproject.org/wiki/User:Heracias>
>>>>>>>>>>>>>>>> https://fedoraproject.org/wiki/User:Heracias /
>>>>>>>>>>>>>>>> <http://www.linkedin.com/pub/10/3a8/945>
>>>>>>>>>>>>>>>> http://www.linkedin.com/pub/10/3a8/945*
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> ------------------------------
>>>>>>>>>>>>>>>> Date: Mon, 17 Aug 2009 00:52:37 -0300
>>>>>>>>>>>>>>>> From: <a.barsotini em gmail.com>a.barsotini em gmail.com
>>>>>>>>>>>>>>>> To: <fedora-users-br em redhat.com>fedora-users-br em redhat.com
>>>>>>>>>>>>>>>> Subject: [Fedora-users-br] VPN no fedora
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Olá lista...
>>>>>>>>>>>>>>>> Pessoal, recentemente estava com problema para configurar
>>>>>>>>>>>>>>>> uma VPN no FEDORA
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Através de algumas alterações nos arquivos de repositório
>>>>>>>>>>>>>>>> (com a ajuda dessa lista) consegui baixar o PPTPD via yum...
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Hoje a minha VPN funciona quase que perfeitamente... Estou
>>>>>>>>>>>>>>>> com problema no GATEWAY das máquinas que conectam nessa VPN.
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Seguinte:
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Quando uma máquina conecta na VPN DO SERVER.... ela passa a
>>>>>>>>>>>>>>>> utilizar o GW do servidor da VPN.
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Ex: Maquina NÃO conectada na VPN (GW = 192.168.4.1)...
>>>>>>>>>>>>>>>> Máquina depois de conectar na VPN (GW = 192.168.0.254)
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Fiz os testes com o TRACERT e realmente quando estou
>>>>>>>>>>>>>>>> conectado na VPN o GW Muda....
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Procurei na INTERNET sobre esse "problema" e mandaram
>>>>>>>>>>>>>>>> remover a opção de utilizar o GW da VPN nas propriedades da conexão VPN...
>>>>>>>>>>>>>>>> porém, quando desmarco essa opção, não consigo mais pingar o SERVIDOR e nem
>>>>>>>>>>>>>>>> o SERVIDOR pinga minha máquina !!!
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Onde estou errando ??? existe alguma solução pra isso ???
>>>>>>>>>>>>>>>> Ou quando conectar na VPN vou ter sempre que utilizar o GW do SERVIDOR ????
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Agradeço a quem puder me dar uma luz...
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Armando!
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> ------------------------------
>>>>>>>>>>>>>>>> Conheça os novos produtos Windows Live. Clique aqui!<http://www.windowslive.com.br/>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>> Fedora-users-br mailing list
>>>>>>>>>>>>>>>> <Fedora-users-br em redhat.com>Fedora-users-br em redhat.com
>>>>>>>>>>>>>>>> <https://www.redhat.com/mailman/listinfo/fedora-users-br>
>>>>>>>>>>>>>>>> https://www.redhat.com/mailman/listinfo/fedora-users-br
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> ------------------------------
>>>>>>>>>>>>>>>> Novo Internet Explorer 8: mais rápido e muito mais seguro. Baixe
>>>>>>>>>>>>>>>> agora, é grátis!<http://brasil.microsoft.com.br/IE8/mergulhe/?utm_source=MSN;Hotmail&utm_medium=Tagline&utm_campaign=IE8>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>> Fedora-users-br mailing list
>>>>>>>>>>>>>>>> <Fedora-users-br em redhat.com>Fedora-users-br em redhat.com
>>>>>>>>>>>>>>>> <https://www.redhat.com/mailman/listinfo/fedora-users-br>
>>>>>>>>>>>>>>>> https://www.redhat.com/mailman/listinfo/fedora-users-br
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> ------------------------------
>>>>>>>>>>>>>>>> Quer uma internet mais segura? Baixe agora o novo Internet
>>>>>>>>>>>>>>>> Explorer 8. É grátis!<http://brasil.microsoft.com.br/IE8/mergulhe/?utm_source=MSN;Hotmail&utm_medium=Tagline&utm_campaign=IE8>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>> Fedora-users-br mailing list
>>>>>>>>>>>>>>>> <Fedora-users-br em redhat.com>Fedora-users-br em redhat.com
>>>>>>>>>>>>>>>> <https://www.redhat.com/mailman/listinfo/fedora-users-br>
>>>>>>>>>>>>>>>> https://www.redhat.com/mailman/listinfo/fedora-users-br
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> ------------------------------
>>>>>>>>>>>>>>>> Novo Internet Explorer 8: mais rápido e muito mais seguro. Baixe
>>>>>>>>>>>>>>>> agora, é grátis!<http://brasil.microsoft.com.br/IE8/mergulhe/?utm_source=MSN%3BHotmail&utm_medium=Tagline&utm_campaign=IE8>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>> Fedora-users-br mailing list
>>>>>>>>>>>>>>>> <Fedora-users-br em redhat.com>Fedora-users-br em redhat.com
>>>>>>>>>>>>>>>> <https://www.redhat.com/mailman/listinfo/fedora-users-br>
>>>>>>>>>>>>>>>> https://www.redhat.com/mailman/listinfo/fedora-users-br
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>> Fedora-users-br mailing list
>>>>>>>>>>>>>>> Fedora-users-br em redhat.com
>>>>>>>>>>>>>>> https://www.redhat.com/mailman/listinfo/fedora-users-br
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>> Fedora-users-br mailing list
>>>>>>>>>>>>>>> Fedora-users-br em redhat.com
>>>>>>>>>>>>>>> https://www.redhat.com/mailman/listinfo/fedora-users-br
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>> --
>>>>>>>>>>>>> Fedora-users-br mailing list
>>>>>>>>>>>>> Fedora-users-br em redhat.com
>>>>>>>>>>>>> https://www.redhat.com/mailman/listinfo/fedora-users-br
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>> --
>>>>>>>>>>>> Fedora-users-br mailing list
>>>>>>>>>>>> Fedora-users-br em redhat.com
>>>>>>>>>>>> https://www.redhat.com/mailman/listinfo/fedora-users-br
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>> --
>>>>>>>>>>> Fedora-users-br mailing list
>>>>>>>>>>> Fedora-users-br em redhat.com
>>>>>>>>>>> https://www.redhat.com/mailman/listinfo/fedora-users-br
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>
>>>>>>>>
>>>>>>>> --
>>>>>>>> Fedora-users-br mailing list
>>>>>>>> Fedora-users-br em redhat.com
>>>>>>>> https://www.redhat.com/mailman/listinfo/fedora-users-br
>>>>>>>>
>>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>> --
>>>>>>> Marley Bacelar
>>>>>>> Project Fedora Ambassador
>>>>>>> VCP, VSP. VTSP., ITILF
>>>>>>> irc.freenode.net - #fedora-br - #vmware - dearka
>>>>>>> marleybacelar em gmail.com
>>>>>>> Maranhão - Brasil
>>>>>>>
>>>>>>> --
>>>>>>> Fedora-users-br mailing list
>>>>>>> Fedora-users-br em redhat.com
>>>>>>> https://www.redhat.com/mailman/listinfo/fedora-users-br
>>>>>>>
>>>>>>>
>>>>>>
>>>>>> --
>>>>>> Fedora-users-br mailing list
>>>>>> Fedora-users-br em redhat.com
>>>>>> https://www.redhat.com/mailman/listinfo/fedora-users-br
>>>>>>
>>>>>>
>>>>>
>>>>>
>>>>>
>>>>> --
>>>>> Fedora-users-br mailing list
>>>>> Fedora-users-br em redhat.com
>>>>> https://www.redhat.com/mailman/listinfo/fedora-users-br
>>>>>
>>>>>
>>>>
>>>> --
>>>> Fedora-users-br mailing list
>>>> Fedora-users-br em redhat.com
>>>> https://www.redhat.com/mailman/listinfo/fedora-users-br
>>>>
>>>>
>>>
>>>
>>> --
>>> Fedora-users-br mailing list
>>> Fedora-users-br em redhat.com
>>> https://www.redhat.com/mailman/listinfo/fedora-users-br
>>>
>>>
>>
>> --
>> Fedora-users-br mailing list
>> Fedora-users-br em redhat.com
>> https://www.redhat.com/mailman/listinfo/fedora-users-br
>>
>>
>
>
>
> --
> Fedora-users-br mailing list
> Fedora-users-br em redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-users-br
>
>
-------------- Próxima Parte ----------
Um anexo em HTML foi limpo...
URL: <http://listman.redhat.com/archives/fedora-users-br/attachments/20090823/79c0180d/attachment.htm>
Mais detalhes sobre a lista de discussão Fedora-users-br