华新 - VPN on Linux （急）

VPN on Linux （急）在kernel 2.6.5 上安装了Cisco vpn 4.0.4a
initialization 没问题，运行 ./vpnclient connect inside-nus
输入user和密码，通过。到最后的时候，它显示 Local Lan Access Disabled
不能上网。
我已经吧firewall关了，eth0 也是active的。

哪位高手给点指示？？谢谢了[evan022 (2-3 23:43, Long long ago)] [ 传统版 | sForum ][登录后回复]1楼

the main problem is thatcisco 4.04a did not support this linux kernel at all.

solution

1.try to find cisco 4.04B, there are someone mentioned it. You can try to download it by searching fedoraforum.org for its link

2. try to find cisco 4.6 directly la, i am using it. Fedora core 3. Kernel 2.6.10.1.741.

report it working fine so far.

by the way, the cisco 4.6 and the patch for it all can be found in fedoraforum.org

good luck

oh, last words, actually you can surf net using 4.0.4a :P, the only problem is, you cannot surf by using domain name, but CAN SURF BY IP ADDRESS... which is workable for some sites, eg. google, but not for others, eg. msn.com

hee hee[MrDJay (2-4 0:33, Long long ago)] [ 传统版 | sForum ][登录后回复]2楼

(引用 MrDJay:the main problem is thatcisco 4.04a did not support this linux kernel at all. solution 1.try to find cisco 4.04B, there are so...)Just a word--thanks![evan022 (2-4 0:40, Long long ago)] [ 传统版 | sForum ][登录后回复]3楼

(引用 MrDJay:the main problem is thatcisco 4.04a did not support this linux kernel at all. solution 1.try to find cisco 4.04B, there are so...)顺便问一下如果启动firewall，需要怎样修改iptable？[evan022 (2-4 0:49, Long long ago)] [ 传统版 | sForum ][登录后回复]4楼

(引用 evan022:顺便问一下如果启动firewall，需要怎样修改iptable？)keke. sorry not so sure... not touch Linux firewall and iptable parts much :$[MrDJay (2-4 10:30, Long long ago)] [ 传统版 | sForum ][登录后回复]5楼

(引用 MrDJay:the main problem is thatcisco 4.04a did not support this linux kernel at all. solution 1.try to find cisco 4.04B, there are so...)Still got that problem....quoat:
//
Do you wish to continue? (y/n): y

Your VPN connection is secure.

VPN tunnel information.
Client address: 172.18.194.160
Server address: 137.132.3.176
Encryption: 168-bit 3-DES
Authentication: HMAC-MD5
IP Compression: None
NAT passthrough is active on port UDP 10000
Local LAN Access is disabled
//

Can anyone give some suggestion??[evan022 (2-4 10:54, Long long ago)] [ 传统版 | sForum ][登录后回复]6楼

(引用 evan022:Still got that problem....quoat: // Do you wish to continue? (y/n): y Your VPN connection is secure. VPN tunnel information....)close the firewall related servicessuch as iptables (forgot)[xuechlai (2-4 16:29, Long long ago)] [ 传统版 | sForum ][登录后回复]7楼

I don't think the word "Lan Access Disabled" matters.. try this..leave the vpn window open, and see whether you can browse other website.

Regarding iptable, there are a lot of tutorials or documents online. Or you can just man "iptables".

If you just want to disable it, use the command in /etc/init.d, should be something like "/etc/init.d/iptables stop" . Do not just flush the chain because you will have a number of chains to flush.

To verify the firewall rules, "iptables -L" . If the output shows the policy is ACCEPT and there is no rules, that means the firewall is not blocking anything.

[Rick (2-4 16:52, Long long ago)] [ 传统版 | sForum ][登录后回复]8楼

(引用 evan022:Still got that problem....quoat: // Do you wish to continue? (y/n): y Your VPN connection is secure. VPN tunnel information....)to amend. that line is not a problem, as upstairs Rick said. leave it thereand surf your net:P[MrDJay (2-4 21:16, Long long ago)] [ 传统版 | sForum ][登录后回复]9楼