Cannot connect to New Server Manager over VPN

Support
,
1

NethServer Version: 7.7.1908
Module: VPN

I encountered a problem with the new Server Manager on port 9090. I cannot reach it when connected over OpenVPN roadwarrior. I still can connect and access the old one on port 980.

Nethserver serves as an open VPN server, gateway, and router. It has two network interfaces One red with public IP, one green for a local network. The local network in on network 10.0.0.1 with mask 255.255.255.0. VPN is in routed mode with the network set to be 10.0.2.0 with mask 255.255.255.0 and 10.0.2.0 is added to trusted networks.

In the setting, I set Grant access from Wan (Red) to off.

What am I missing that something is blocking me to connect to a new Server Manager while connection to the old one works?

2

There’s some typo… or you put under the same subnet VPN and Green? That doesn’t work man… (I am assuming that you’re not a lady…)

3

Yes, I made there typo. Sorry fixed in original post.

4

Did you verified that the subnet mask into Trusted network is correct for VPN?
Maybe i am summoning the wrong guy, but i hope that someone will be kind… @giacomo cockpit shorewall configuration seems… not present.
Into System-> Settings -> Server manager we have this mask for RED interface and cherry pick subnets/Ip addresses.
image
But it’s lacking the Cockpit service into…System -> Services. Event with firewall/zone configuration.

Only way to manage a bit more the servis is only install firewall module?

5

Yes I did:
Trusted networks:

49
491354×242 12.8 KB

vpn Road-warrior setting
32
321170×1474 75.7 KB

6

The configuration is almost hard-coded to avoid that a user can involuntarily close the port.
Since the VPN is already a trusted network, the access should be already granted.

If the access is blocked, please report here an extract from /var/log/firewall.log.
Otherwise you can try to add the IP that should be granted inside the “Allowed IPs” field.

7

tail -100 give following output shortly I connected to the server over VPN. I edited the servers public IP. 192.38.142.102 is public ip of my internet connection over which I was connecting to the server over VPN.

Jan 24 12:25:34 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=185.143.221.186 DST=SERVER_PUBLIC_IP LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=52453 PROTO=TCP SPT=52322 DPT=29623 WINDOW=1024 RES=0x00 SYN URGP=0
Jan 24 12:25:40 eve kernel: Shorewall:loc2fw:REJECT:IN=br0 OUT= MAC=6c:2b:59:86:b0:a5:f4:5c:89:ad:99:9f:08:00 SRC=10.0.0.157 DST=10.0.0.1 LEN=32 TOS=0x00 PREC=0x00 TTL=64 ID=36116 PROTO=UDP SPT=50466 DPT=192 LEN=12
Jan 24 12:25:41 eve kernel: Shorewall:loc2fw:REJECT:IN=br0 OUT= MAC=6c:2b:59:86:b0:a5:f4:5c:89:ad:99:9f:08:00 SRC=10.0.0.157 DST=10.0.0.1 LEN=32 TOS=0x00 PREC=0x00 TTL=64 ID=50247 PROTO=UDP SPT=50466 DPT=192 LEN=12
Jan 24 12:25:42 eve kernel: Shorewall:loc2fw:REJECT:IN=br0 OUT= MAC=6c:2b:59:86:b0:a5:f4:5c:89:ad:99:9f:08:00 SRC=10.0.0.157 DST=10.0.0.1 LEN=32 TOS=0x00 PREC=0x00 TTL=64 ID=24923 PROTO=UDP SPT=50466 DPT=192 LEN=12
Jan 24 12:25:42 eve kernel: Shorewall:loc2fw:REJECT:IN=br0 OUT= MAC=6c:2b:59:86:b0:a5:f4:5c:89:ad:99:9f:08:00 SRC=10.0.0.157 DST=10.0.0.1 LEN=32 TOS=0x00 PREC=0x00 TTL=64 ID=26188 PROTO=UDP SPT=50466 DPT=192 LEN=12
Jan 24 12:25:43 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=185.143.221.186 DST=SERVER_PUBLIC_IP LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=58026 PROTO=TCP SPT=52322 DPT=48985 WINDOW=1024 RES=0x00 SYN URGP=0
Jan 24 12:25:45 eve kernel: Shorewall:loc2fw:REJECT:IN=br0 OUT= MAC=6c:2b:59:86:b0:a5:f4:5c:89:ad:99:9f:08:00 SRC=10.0.0.157 DST=10.0.0.1 LEN=32 TOS=0x00 PREC=0x00 TTL=64 ID=36365 PROTO=UDP SPT=50466 DPT=192 LEN=12
Jan 24 12:25:45 eve kernel: Shorewall:loc2fw:REJECT:IN=br0 OUT= MAC=6c:2b:59:86:b0:a5:f4:5c:89:ad:99:9f:08:00 SRC=10.0.0.157 DST=10.0.0.1 LEN=32 TOS=0x00 PREC=0x00 TTL=64 ID=60886 PROTO=UDP SPT=50466 DPT=192 LEN=12
Jan 24 12:25:45 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=89.248.162.136 DST=SERVER_PUBLIC_IP LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=48940 PROTO=TCP SPT=42472 DPT=5658 WINDOW=1024 RES=0x00 SYN URGP=0
Jan 24 12:25:51 eve kernel: Shorewall:loc2fw:REJECT:IN=br0 OUT= MAC=6c:2b:59:86:b0:a5:f4:5c:89:ad:99:9f:08:00 SRC=10.0.0.157 DST=10.0.0.1 LEN=32 TOS=0x00 PREC=0x00 TTL=64 ID=37388 PROTO=UDP SPT=50466 DPT=192 LEN=12
Jan 24 12:25:51 eve kernel: Shorewall:loc2fw:REJECT:IN=br0 OUT= MAC=6c:2b:59:86:b0:a5:f4:5c:89:ad:99:9f:08:00 SRC=10.0.0.157 DST=10.0.0.1 LEN=32 TOS=0x00 PREC=0x00 TTL=64 ID=3210 PROTO=UDP SPT=50466 DPT=192 LEN=12
Jan 24 12:25:57 eve kernel: Shorewall:loc2fw:REJECT:IN=br0 OUT= MAC=6c:2b:59:86:b0:a5:f4:5c:89:ad:99:9f:08:00 SRC=10.0.0.157 DST=10.0.0.1 LEN=32 TOS=0x00 PREC=0x00 TTL=64 ID=40903 PROTO=UDP SPT=50466 DPT=192 LEN=12
Jan 24 12:25:57 eve kernel: Shorewall:loc2fw:REJECT:IN=br0 OUT= MAC=6c:2b:59:86:b0:a5:f4:5c:89:ad:99:9f:08:00 SRC=10.0.0.157 DST=10.0.0.1 LEN=32 TOS=0x00 PREC=0x00 TTL=64 ID=32507 PROTO=UDP SPT=50466 DPT=192 LEN=12
Jan 24 12:25:58 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=94.102.49.65 DST=SERVER_PUBLIC_IP LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=13421 PROTO=TCP SPT=49513 DPT=4236 WINDOW=1024 RES=0x00 SYN URGP=0
Jan 24 12:26:06 eve kernel: Shorewall:loc2fw:REJECT:IN=br0 OUT= MAC=6c:2b:59:86:b0:a5:f4:5c:89:ad:99:9f:08:00 SRC=10.0.0.157 DST=10.0.0.1 LEN=32 TOS=0x00 PREC=0x00 TTL=64 ID=4037 PROTO=UDP SPT=50466 DPT=192 LEN=12
Jan 24 12:26:06 eve kernel: Shorewall:loc2fw:REJECT:IN=br0 OUT= MAC=6c:2b:59:86:b0:a5:f4:5c:89:ad:99:9f:08:00 SRC=10.0.0.157 DST=10.0.0.1 LEN=32 TOS=0x00 PREC=0x00 TTL=64 ID=56814 PROTO=UDP SPT=50466 DPT=192 LEN=12
Jan 24 12:26:17 eve kernel: Shorewall:loc2fw:REJECT:IN=br0 OUT= MAC=6c:2b:59:86:b0:a5:f4:5c:89:ad:99:9f:08:00 SRC=10.0.0.157 DST=10.0.0.1 LEN=32 TOS=0x00 PREC=0x00 TTL=64 ID=11959 PROTO=UDP SPT=50466 DPT=192 LEN=12
Jan 24 12:26:17 eve kernel: Shorewall:loc2fw:REJECT:IN=br0 OUT= MAC=6c:2b:59:86:b0:a5:f4:5c:89:ad:99:9f:08:00 SRC=10.0.0.157 DST=10.0.0.1 LEN=32 TOS=0x00 PREC=0x00 TTL=64 ID=59975 PROTO=UDP SPT=50466 DPT=192 LEN=12
Jan 24 12:26:24 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=92.119.160.143 DST=SERVER_PUBLIC_IP LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=55041 PROTO=TCP SPT=54861 DPT=56122 WINDOW=1024 RES=0x00 SYN URGP=0
Jan 24 12:26:28 eve kernel: Shorewall:loc2fw:REJECT:IN=br0 OUT= MAC=6c:2b:59:86:b0:a5:f4:5c:89:ad:99:9f:08:00 SRC=10.0.0.157 DST=10.0.0.1 LEN=32 TOS=0x00 PREC=0x00 TTL=64 ID=57025 PROTO=UDP SPT=50466 DPT=192 LEN=12
Jan 24 12:26:28 eve kernel: Shorewall:loc2fw:REJECT:IN=br0 OUT= MAC=6c:2b:59:86:b0:a5:f4:5c:89:ad:99:9f:08:00 SRC=10.0.0.157 DST=10.0.0.1 LEN=32 TOS=0x00 PREC=0x00 TTL=64 ID=53475 PROTO=UDP SPT=50466 DPT=192 LEN=12
Jan 24 12:26:44 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=80.82.78.20 DST=SERVER_PUBLIC_IP LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=64774 PROTO=TCP SPT=53828 DPT=22211 WINDOW=1024 RES=0x00 SYN URGP=0
Jan 24 12:27:06 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=89.248.168.41 DST=SERVER_PUBLIC_IP LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=36957 PROTO=TCP SPT=42504 DPT=1927 WINDOW=1024 RES=0x00 SYN URGP=0
Jan 24 12:27:12 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=92.119.160.142 DST=SERVER_PUBLIC_IP LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=1764 PROTO=TCP SPT=47047 DPT=16699 WINDOW=1024 RES=0x00 SYN URGP=0
Jan 24 12:27:22 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=89.248.162.136 DST=SERVER_PUBLIC_IP LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=37515 PROTO=TCP SPT=42472 DPT=5211 WINDOW=1024 RES=0x00 SYN URGP=0
Jan 24 12:27:27 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=185.143.221.186 DST=SERVER_PUBLIC_IP LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=63287 PROTO=TCP SPT=52322 DPT=19670 WINDOW=1024 RES=0x00 SYN URGP=0
Jan 24 12:27:54 eve kernel: Shorewall:sfilter:DROP:IN=tunrw OUT=tunrw MAC= SRC=10.0.2.10 DST=10.0.2.9 LEN=72 TOS=0x00 PREC=0x00 TTL=63 ID=325 PROTO=UDP SPT=57621 DPT=57621 LEN=52
Jan 24 12:27:58 eve kernel: Shorewall:sfilter:DROP:IN=tunrw OUT=tunrw MAC= SRC=10.0.2.10 DST=10.0.2.10 LEN=78 TOS=0x00 PREC=0x00 TTL=63 ID=16235 PROTO=UDP SPT=137 DPT=137 LEN=58
Jan 24 12:27:58 eve kernel: Shorewall:sfilter:DROP:IN=tunrw OUT=tunrw MAC= SRC=10.0.2.10 DST=10.0.2.10 LEN=96 TOS=0x00 PREC=0x00 TTL=63 ID=2336 PROTO=UDP SPT=137 DPT=137 LEN=76
Jan 24 12:28:00 eve kernel: Shorewall:sfilter:DROP:IN=tunrw OUT=tunrw MAC= SRC=10.0.2.10 DST=10.0.2.10 LEN=96 TOS=0x00 PREC=0x00 TTL=63 ID=54127 PROTO=UDP SPT=137 DPT=137 LEN=76
Jan 24 12:28:00 eve kernel: Shorewall:sfilter:DROP:IN=tunrw OUT=tunrw MAC= SRC=10.0.2.10 DST=10.0.2.10 LEN=78 TOS=0x00 PREC=0x00 TTL=63 ID=36877 PROTO=UDP SPT=137 DPT=137 LEN=58
Jan 24 12:28:00 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=139.159.44.150 DST=SERVER_PUBLIC_IP LEN=52 TOS=0x00 PREC=0x00 TTL=110 ID=9976 DF PROTO=TCP SPT=51124 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0
Jan 24 12:28:01 eve kernel: Shorewall:sfilter:DROP:IN=tunrw OUT=tunrw MAC= SRC=10.0.2.10 DST=10.0.2.10 LEN=96 TOS=0x00 PREC=0x00 TTL=63 ID=30158 PROTO=UDP SPT=137 DPT=137 LEN=76
Jan 24 12:28:01 eve kernel: Shorewall:sfilter:DROP:IN=tunrw OUT=tunrw MAC= SRC=10.0.2.10 DST=10.0.2.10 LEN=78 TOS=0x00 PREC=0x00 TTL=63 ID=6393 PROTO=UDP SPT=137 DPT=137 LEN=58
Jan 24 12:28:02 eve kernel: Shorewall:sfilter:DROP:IN=tunrw OUT=tunrw MAC= SRC=10.0.2.10 DST=10.0.2.10 LEN=96 TOS=0x00 PREC=0x00 TTL=63 ID=26550 PROTO=UDP SPT=137 DPT=137 LEN=76
Jan 24 12:28:03 eve kernel: Shorewall:sfilter:DROP:IN=tunrw OUT=tunrw MAC= SRC=10.0.2.10 DST=10.0.2.10 LEN=96 TOS=0x00 PREC=0x00 TTL=63 ID=17414 PROTO=UDP SPT=137 DPT=137 LEN=76
Jan 24 12:28:13 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=185.143.221.186 DST=SERVER_PUBLIC_IP LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=6489 PROTO=TCP SPT=52322 DPT=28824 WINDOW=1024 RES=0x00 SYN URGP=0
Jan 24 12:28:18 eve kernel: Shorewall:sfilter:DROP:IN=tunrw OUT=tunrw MAC= SRC=10.0.2.10 DST=10.0.2.9 LEN=72 TOS=0x00 PREC=0x00 TTL=63 ID=65415 PROTO=UDP SPT=57621 DPT=57621 LEN=52
Jan 24 12:28:24 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=80.82.65.90 DST=SERVER_PUBLIC_IP LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=36971 PROTO=TCP SPT=8080 DPT=9023 WINDOW=1024 RES=0x00 SYN URGP=0
Jan 24 12:28:25 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=164.52.24.174 DST=SERVER_PUBLIC_IP LEN=44 TOS=0x00 PREC=0x00 TTL=246 ID=54321 PROTO=TCP SPT=37092 DPT=843 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:28:38 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=185.176.27.122 DST=SERVER_PUBLIC_IP LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=20895 PROTO=TCP SPT=48485 DPT=37595 WINDOW=1024 RES=0x00 SYN URGP=0
Jan 24 12:28:48 eve kernel: Shorewall:sfilter:DROP:IN=tunrw OUT=tunrw MAC= SRC=10.0.2.10 DST=10.0.2.9 LEN=72 TOS=0x00 PREC=0x00 TTL=63 ID=6983 PROTO=UDP SPT=57621 DPT=57621 LEN=52
Jan 24 12:28:56 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=185.143.221.186 DST=SERVER_PUBLIC_IP LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=37065 PROTO=TCP SPT=52322 DPT=55841 WINDOW=1024 RES=0x00 SYN URGP=0
Jan 24 12:28:59 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=53 ID=0 PROTO=TCP SPT=5238 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:28:59 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=52 ID=0 PROTO=TCP SPT=5236 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:28:59 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=52 ID=0 PROTO=TCP SPT=5242 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:28:59 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=52 ID=0 PROTO=TCP SPT=5236 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:28:59 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=53 ID=0 PROTO=TCP SPT=5238 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:29:00 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=53 ID=0 PROTO=TCP SPT=5238 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:29:00 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=52 ID=0 PROTO=TCP SPT=5236 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:29:00 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=52 ID=0 PROTO=TCP SPT=5242 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:29:00 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=52 ID=0 PROTO=TCP SPT=5236 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:29:00 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=53 ID=0 PROTO=TCP SPT=5238 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:29:00 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=89.248.160.193 DST=SERVER_PUBLIC_IP LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=44616 PROTO=TCP SPT=44487 DPT=11361 WINDOW=1024 RES=0x00 SYN URGP=0
Jan 24 12:29:06 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=159.203.201.108 DST=SERVER_PUBLIC_IP LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=54321 PROTO=TCP SPT=39766 DPT=51618 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:29:07 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=89.248.162.136 DST=SERVER_PUBLIC_IP LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=17190 PROTO=TCP SPT=42472 DPT=4559 WINDOW=1024 RES=0x00 SYN URGP=0
Jan 24 12:29:13 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=53 ID=0 PROTO=TCP SPT=5239 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:29:13 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=52 ID=0 PROTO=TCP SPT=5184 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:29:13 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=52 ID=0 PROTO=TCP SPT=5219 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:29:13 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=53 ID=0 PROTO=TCP SPT=5239 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:29:13 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=52 ID=0 PROTO=TCP SPT=5184 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:29:13 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=53 ID=0 PROTO=TCP SPT=5239 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:29:13 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=52 ID=0 PROTO=TCP SPT=5184 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:29:13 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=52 ID=0 PROTO=TCP SPT=5219 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:29:13 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=53 ID=0 PROTO=TCP SPT=5239 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:29:13 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=52 ID=0 PROTO=TCP SPT=5184 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:29:15 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=53 ID=0 PROTO=TCP SPT=5239 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:29:18 eve kernel: Shorewall:sfilter:DROP:IN=tunrw OUT=tunrw MAC= SRC=10.0.2.10 DST=10.0.2.9 LEN=72 TOS=0x00 PREC=0x00 TTL=63 ID=33893 PROTO=UDP SPT=57621 DPT=57621 LEN=52
Jan 24 12:29:19 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=185.143.221.186 DST=SERVER_PUBLIC_IP LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=39013 PROTO=TCP SPT=52322 DPT=23989 WINDOW=1024 RES=0x00 SYN URGP=0
Jan 24 12:29:20 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=48 TOS=0x00 PREC=0x00 TTL=52 ID=0 PROTO=TCP SPT=5219 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:29:23 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=48 TOS=0x00 PREC=0x00 TTL=52 ID=0 PROTO=TCP SPT=5184 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:29:31 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=52 ID=0 PROTO=TCP SPT=5208 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:29:31 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=52 ID=0 PROTO=TCP SPT=5246 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:29:31 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=53 ID=0 PROTO=TCP SPT=5200 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:29:31 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=52 ID=0 PROTO=TCP SPT=5246 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:29:31 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=52 ID=0 PROTO=TCP SPT=5208 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:29:31 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=52 ID=0 PROTO=TCP SPT=5208 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:29:31 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=52 ID=0 PROTO=TCP SPT=5246 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:29:32 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=53 ID=0 PROTO=TCP SPT=5200 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:29:32 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=52 ID=0 PROTO=TCP SPT=5246 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:29:32 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=52 ID=0 PROTO=TCP SPT=5208 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:29:35 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=48 TOS=0x00 PREC=0x00 TTL=52 ID=0 PROTO=TCP SPT=5208 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:29:48 eve kernel: Shorewall:sfilter:DROP:IN=tunrw OUT=tunrw MAC= SRC=10.0.2.10 DST=10.0.2.9 LEN=72 TOS=0x00 PREC=0x00 TTL=63 ID=63996 PROTO=UDP SPT=57621 DPT=57621 LEN=52
Jan 24 12:30:05 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=167.99.148.235 DST=SERVER_PUBLIC_IP LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=13944 PROTO=TCP SPT=58712 DPT=6379 WINDOW=1024 RES=0x00 SYN URGP=0
Jan 24 12:30:14 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=185.143.221.186 DST=SERVER_PUBLIC_IP LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=46550 PROTO=TCP SPT=52322 DPT=8763 WINDOW=1024 RES=0x00 SYN URGP=0
Jan 24 12:30:14 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=52 ID=0 PROTO=TCP SPT=5237 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:30:14 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=53 ID=0 PROTO=TCP SPT=5214 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:30:14 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=52 ID=0 PROTO=TCP SPT=5185 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:30:15 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=53 ID=0 PROTO=TCP SPT=5214 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:30:15 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=52 ID=0 PROTO=TCP SPT=5237 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:30:15 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=52 ID=0 PROTO=TCP SPT=5237 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:30:15 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=53 ID=0 PROTO=TCP SPT=5214 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:30:15 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=52 ID=0 PROTO=TCP SPT=5185 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:30:15 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=53 ID=0 PROTO=TCP SPT=5214 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:30:15 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=64 TOS=0x00 PREC=0x00 TTL=52 ID=0 PROTO=TCP SPT=5237 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:30:18 eve kernel: Shorewall:sfilter:DROP:IN=tunrw OUT=tunrw MAC= SRC=10.0.2.10 DST=10.0.2.9 LEN=72 TOS=0x00 PREC=0x00 TTL=63 ID=4365 PROTO=UDP SPT=57621 DPT=57621 LEN=52
Jan 24 12:30:19 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=139.162.72.191 DST=SERVER_PUBLIC_IP LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=54321 PROTO=TCP SPT=39484 DPT=3127 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:30:20 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=93.174.93.123 DST=SERVER_PUBLIC_IP LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=55865 PROTO=TCP SPT=44243 DPT=5170 WINDOW=1024 RES=0x00 SYN URGP=0
Jan 24 12:30:24 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=192.38.142.102 DST=SERVER_PUBLIC_IP LEN=48 TOS=0x00 PREC=0x00 TTL=52 ID=0 PROTO=TCP SPT=5237 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0
Jan 24 12:30:26 eve kernel: Shorewall:net2fw:DROP:IN=em1 OUT= MAC=6c:2b:59:86:b0:a4:58:bf:ea:45:56:41:08:00 SRC=185.143.221.186 DST=SERVER_PUBLIC_IP LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=60944 PROTO=TCP SPT=52322 DPT=39462 WINDOW=1024 RES=0x00 SYN URGP=0

8

In VPN setting I tried to reserve IP for my user and add this IP to Allowed IPs field but it did not help.