vpn has no internet after upgrading to 18.04











up vote
0
down vote

favorite
1












Resently,i upgrade my ubuntu 16.04 server to 18.04



but after upgrading ,my (Cisco anyconnect,pptp) vpn servers have no internet access...



Can anyone help me?










share|improve this question




























    up vote
    0
    down vote

    favorite
    1












    Resently,i upgrade my ubuntu 16.04 server to 18.04



    but after upgrading ,my (Cisco anyconnect,pptp) vpn servers have no internet access...



    Can anyone help me?










    share|improve this question


























      up vote
      0
      down vote

      favorite
      1









      up vote
      0
      down vote

      favorite
      1






      1





      Resently,i upgrade my ubuntu 16.04 server to 18.04



      but after upgrading ,my (Cisco anyconnect,pptp) vpn servers have no internet access...



      Can anyone help me?










      share|improve this question















      Resently,i upgrade my ubuntu 16.04 server to 18.04



      but after upgrading ,my (Cisco anyconnect,pptp) vpn servers have no internet access...



      Can anyone help me?







      18.04 internet vpn iptables pptp






      share|improve this question















      share|improve this question













      share|improve this question




      share|improve this question








      edited Nov 20 at 11:43

























      asked Nov 19 at 21:13









      ahooyee

      140128




      140128






















          1 Answer
          1






          active

          oldest

          votes

















          up vote
          0
          down vote



          accepted










          I solved the problem by adding following 2 iptables rules to my ubuntu server



           iptables -P FORWARD ACCEPT
          iptables -P OUTPUT ACCEPT


          my exisisting iptables rules (related to pptp and ocsrv) before above changes:



          iptables -I INPUT -p tcp --dport 1723 -m state --state NEW -j ACCEPT
          iptables -I INPUT -p gre -j ACCEPT
          iptables -t nat -I POSTROUTING -o ens32 -j MASQUERADE
          iptables -I FORWARD -p tcp --tcp-flags SYN,RST SYN -s 182.18.0.0/24 -j TCPMSS --clamp-mss-to-pmtu
          iptables -t nat -A POSTROUTING -o ens32 -j MASQUERADE
          iptables -I INPUT -p tcp --dport 443 -j ACCEPT
          iptables -I INPUT -p udp --dport 443 -j ACCEPT





          share|improve this answer





















            Your Answer








            StackExchange.ready(function() {
            var channelOptions = {
            tags: "".split(" "),
            id: "89"
            };
            initTagRenderer("".split(" "), "".split(" "), channelOptions);

            StackExchange.using("externalEditor", function() {
            // Have to fire editor after snippets, if snippets enabled
            if (StackExchange.settings.snippets.snippetsEnabled) {
            StackExchange.using("snippets", function() {
            createEditor();
            });
            }
            else {
            createEditor();
            }
            });

            function createEditor() {
            StackExchange.prepareEditor({
            heartbeatType: 'answer',
            convertImagesToLinks: true,
            noModals: true,
            showLowRepImageUploadWarning: true,
            reputationToPostImages: 10,
            bindNavPrevention: true,
            postfix: "",
            imageUploader: {
            brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
            contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
            allowUrls: true
            },
            onDemand: true,
            discardSelector: ".discard-answer"
            ,immediatelyShowMarkdownHelp:true
            });


            }
            });














             

            draft saved


            draft discarded


















            StackExchange.ready(
            function () {
            StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2faskubuntu.com%2fquestions%2f1094332%2fvpn-has-no-internet-after-upgrading-to-18-04%23new-answer', 'question_page');
            }
            );

            Post as a guest















            Required, but never shown

























            1 Answer
            1






            active

            oldest

            votes








            1 Answer
            1






            active

            oldest

            votes









            active

            oldest

            votes






            active

            oldest

            votes








            up vote
            0
            down vote



            accepted










            I solved the problem by adding following 2 iptables rules to my ubuntu server



             iptables -P FORWARD ACCEPT
            iptables -P OUTPUT ACCEPT


            my exisisting iptables rules (related to pptp and ocsrv) before above changes:



            iptables -I INPUT -p tcp --dport 1723 -m state --state NEW -j ACCEPT
            iptables -I INPUT -p gre -j ACCEPT
            iptables -t nat -I POSTROUTING -o ens32 -j MASQUERADE
            iptables -I FORWARD -p tcp --tcp-flags SYN,RST SYN -s 182.18.0.0/24 -j TCPMSS --clamp-mss-to-pmtu
            iptables -t nat -A POSTROUTING -o ens32 -j MASQUERADE
            iptables -I INPUT -p tcp --dport 443 -j ACCEPT
            iptables -I INPUT -p udp --dport 443 -j ACCEPT





            share|improve this answer

























              up vote
              0
              down vote



              accepted










              I solved the problem by adding following 2 iptables rules to my ubuntu server



               iptables -P FORWARD ACCEPT
              iptables -P OUTPUT ACCEPT


              my exisisting iptables rules (related to pptp and ocsrv) before above changes:



              iptables -I INPUT -p tcp --dport 1723 -m state --state NEW -j ACCEPT
              iptables -I INPUT -p gre -j ACCEPT
              iptables -t nat -I POSTROUTING -o ens32 -j MASQUERADE
              iptables -I FORWARD -p tcp --tcp-flags SYN,RST SYN -s 182.18.0.0/24 -j TCPMSS --clamp-mss-to-pmtu
              iptables -t nat -A POSTROUTING -o ens32 -j MASQUERADE
              iptables -I INPUT -p tcp --dport 443 -j ACCEPT
              iptables -I INPUT -p udp --dport 443 -j ACCEPT





              share|improve this answer























                up vote
                0
                down vote



                accepted







                up vote
                0
                down vote



                accepted






                I solved the problem by adding following 2 iptables rules to my ubuntu server



                 iptables -P FORWARD ACCEPT
                iptables -P OUTPUT ACCEPT


                my exisisting iptables rules (related to pptp and ocsrv) before above changes:



                iptables -I INPUT -p tcp --dport 1723 -m state --state NEW -j ACCEPT
                iptables -I INPUT -p gre -j ACCEPT
                iptables -t nat -I POSTROUTING -o ens32 -j MASQUERADE
                iptables -I FORWARD -p tcp --tcp-flags SYN,RST SYN -s 182.18.0.0/24 -j TCPMSS --clamp-mss-to-pmtu
                iptables -t nat -A POSTROUTING -o ens32 -j MASQUERADE
                iptables -I INPUT -p tcp --dport 443 -j ACCEPT
                iptables -I INPUT -p udp --dport 443 -j ACCEPT





                share|improve this answer












                I solved the problem by adding following 2 iptables rules to my ubuntu server



                 iptables -P FORWARD ACCEPT
                iptables -P OUTPUT ACCEPT


                my exisisting iptables rules (related to pptp and ocsrv) before above changes:



                iptables -I INPUT -p tcp --dport 1723 -m state --state NEW -j ACCEPT
                iptables -I INPUT -p gre -j ACCEPT
                iptables -t nat -I POSTROUTING -o ens32 -j MASQUERADE
                iptables -I FORWARD -p tcp --tcp-flags SYN,RST SYN -s 182.18.0.0/24 -j TCPMSS --clamp-mss-to-pmtu
                iptables -t nat -A POSTROUTING -o ens32 -j MASQUERADE
                iptables -I INPUT -p tcp --dport 443 -j ACCEPT
                iptables -I INPUT -p udp --dport 443 -j ACCEPT






                share|improve this answer












                share|improve this answer



                share|improve this answer










                answered Nov 20 at 11:42









                ahooyee

                140128




                140128






























                     

                    draft saved


                    draft discarded



















































                     


                    draft saved


                    draft discarded














                    StackExchange.ready(
                    function () {
                    StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2faskubuntu.com%2fquestions%2f1094332%2fvpn-has-no-internet-after-upgrading-to-18-04%23new-answer', 'question_page');
                    }
                    );

                    Post as a guest















                    Required, but never shown





















































                    Required, but never shown














                    Required, but never shown












                    Required, but never shown







                    Required, but never shown

































                    Required, but never shown














                    Required, but never shown












                    Required, but never shown







                    Required, but never shown







                    Popular posts from this blog

                    How to change which sound is reproduced for terminal bell?

                    Can I use Tabulator js library in my java Spring + Thymeleaf project?

                    Title Spacing in Bjornstrup Chapter, Removing Chapter Number From Contents