Hi Tom,

thanks for the hint, after debugging the log message.

Shorewall:road2fw:REJECT:IN=tun0 OUT= MAC= SRC= DST= LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=59035 DF PROTO=TCP SPT=33504 DPT=8080 WINDOW=14600 RES=0x00 SYN URGP=0

I saw that road has no access to FW so I added to policy

road    fw     ACCEPT

After this, it works fine and I can access over Openvpn the tomcat.

Is it safe to let road access to the fw Zone? 


Am 28.01.2013 18:50, schrieb Tom Eastep:
On 1/28/13 8:08 AM, "Dierk Pfeiffer / Metabolic Online" <metaboliconline@gmail.com> wrote:


I try to configure Shorewall on a Ubuntu Server 12.04 with

1. Openvpn
2. Tomcat

So a client can connect to the Server and work with TOMCAT

I have already some rules for Mail, WEB, FTP, SSH

Openvpn is installed and I can connect, but can not reach to the tomcat on Port 8080.

I include the configuration Files for Shorewall and Openvpn

We would prefer the output of 'shorewall dump' collected as described at http://www.shorewall.net/support.htm#Guidelines.

You do not need a parachute to skydive. You only need a parachute to skydive twice.

Master Visual Studio, SharePoint, SQL, ASP.NET, C# 2012, HTML5, CSS,
MVC, Windows 8 Apps, JavaScript and much more. Keep your skills current
with LearnDevNow - 3,200 step-by-step video tutorials by Microsoft
MVPs and experts. ON SALE this month only -- learn more at:

Shorewall-users mailing list