Fedora Linux Support Community & Resources Center
  #1  
Old 12th November 2007, 04:55 PM
dandaman32 Offline
Registered User
 
Join Date: Oct 2006
Posts: 6
SSH-based VPN gives "Destination Host Prohibited"

I'm attempting to set up a SSH-based VPN as per https://help.ubuntu.com/community/SSH_VPN. The system worked great with my remote system running F7. I backed up and restored my entire /etc/ssh directory on the server in question, which was upgraded to F8 over the weekend. The local computer is running Ubuntu Gutsy and the VPN worked fine even under Gutsy until the upgrade to F8. The setup process works as follows before problems are encountered:
  1. Local: ssh -w 0:0 root@remote.host
  2. Local: sudo ifconfig tun0 192.168.1.202 pointopoint 192.168.1.201
  3. Remote: ifconfig tun0 192.168.1.201 pointopoint 192.168.1.202
  4. Remote: arp -sD 192.168.1.201 eth0 pub
  5. Local: sudo route
  6. Local: ping 192.168.1.2; result:
    Code:
    ~$ ping 192.168.1.2
    PING 192.168.1.2 (192.168.1.2) 56(84) bytes of data.
    From 192.168.1.201 icmp_seq=1 Destination Host Prohibited
    From 192.168.1.201 icmp_seq=2 Destination Host Prohibited
    From 192.168.1.201 icmp_seq=3 Destination Host Prohibited
    
    --- 192.168.1.2 ping statistics ---
    3 packets transmitted, 0 received, +3 errors, 100% packet loss, time 2008ms

The remote server's local IP is 192.168.1.195, and pinging that IP works. Deleting the route for the local subnet (in my case, 172.17.64.0/255.255.255.0) doesn't change things. Anybody have any clue as to what's happening here? Thanks in advance.

(Edit: It should also be noted that I do have IP forwarding enabled [echo 1 > /proc/sys/net/ipv4/ip_forward] on the remote system.)

--Dan

Last edited by dandaman32; 12th November 2007 at 05:21 PM. Reason: arp command typo
Reply With Quote
Reply

Tags
sshbased, vpn

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
"Does Fedora Linux have any sort of Windows based installer, anyone?" [SOLVED] Techokami Fedora Focus 8 10th January 2008 06:47 PM
SIP packet blocked by ICMP "administratively prohibited" message MarkE Servers & Networking 2 28th January 2007 04:25 AM
ntpd / default ntpversion of "2" with a Windows AD-based NTP Server... jpantera Using Fedora 2 15th April 2006 06:04 PM
Error:visibility arg must be one of "default", "hidden", "protected" or "internal" wangfeng Using Fedora 0 23rd May 2005 04:59 AM
Couldn't display "SMB:///" , No host "(Null)" could been Found?????? help please munkey Using Fedora 4 12th May 2004 11:31 PM


Current GMT-time: 10:27 (Saturday, 30-08-2014)

TopSubscribe to XML RSS for all Threads in all ForumsFedoraForumDotOrg Archive
logo

All trademarks, and forum posts in this site are property of their respective owner(s).
FedoraForum.org is privately owned and is not directly sponsored by the Fedora Project or Red Hat, Inc.

Privacy Policy | Term of Use | Posting Guidelines | Archive | Contact Us | Founding Members

Powered by vBulletin® Copyright ©2000 - 2012, vBulletin Solutions, Inc.

FedoraForum is Powered by RedHat