APM on Linux Environment

Question

Hi , &nbsp;
I am a linux user. my computer has been connected successfully to APM VPN network using chrome browser. Tunnel is up, private address is assigned correctly, I can ping internal resource, open tcp connection and access private web server successfully. The issue is,  network status on my browser states that I have been disconnected and no traffic statistic appear. I was struggling and found that it's caused by iptables. When I turned that off I got the correct result. But I wonder what rules shall I add to get correct VPN status . please see my attachment for detail view.  I tried to log the rejected packet (13) but to no avail&nbsp;
APM public address 192.168.77.119 (VPN gateway)&nbsp;
internal network 172.16.2.0/24 &nbsp;
assigned network (tunnel dhcp)  10.10.10.0/24&nbsp;
my iptables configuration : &nbsp;
 &nbsp;
 iptables -L --line-numbers&nbsp;
Chain INPUT (policy ACCEPT)&nbsp;
num  target     prot opt source               destination         &nbsp;
1    ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:5902 &nbsp;
2    ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:ldap &nbsp;
3    ACCEPT     all  --  anywhere             anywhere            state RELATED,ESTABLISHED &nbsp;
4    ACCEPT     icmp --  anywhere             anywhere            &nbsp;
8    ACCEPT     tcp  --  anywhere             anywhere            state NEW tcp dpt:ssh &nbsp;
9    ACCEPT     udp  --  anywhere             anywhere            state NEW udp dpt:ipp &nbsp;
10   ACCEPT     udp  --  anywhere             224.0.0.251         state NEW udp dpt:mdns &nbsp;
11   ACCEPT     tcp  --  anywhere             anywhere            state NEW tcp dpt:ipp &nbsp;
12   ACCEPT     udp  --  anywhere             anywhere            state NEW udp dpt:ipp &nbsp;
13   LOG        all  --  anywhere             anywhere            LOG level warning &nbsp;
14   REJECT     all  --  anywhere             anywhere            reject-with icmp-host-prohibited &nbsp;
 &nbsp;
Chain FORWARD (policy ACCEPT)&nbsp;
num  target     prot opt source               destination         &nbsp;
 &nbsp;
Chain OUTPUT (policy ACCEPT)&nbsp;
num  target     prot opt source               destination         &nbsp;
 &nbsp;
 &nbsp;
//tunnel already up and address assigned &nbsp;
 ip -4 addr | grep tun&nbsp;
58: tun0:  mtu 1384 qdisc pfifo_fast state UNKNOWN qlen 500&nbsp;
    inet 10.10.10.10 peer 1.1.1.1/32 scope global tun0&nbsp;
 &nbsp;
 &nbsp;
//ping can reach internal server and tcp connection also ok &nbsp;
 ping 172.16.2.4 &nbsp;
PING 172.16.2.4 (172.16.2.4) 56(84) bytes of data.&nbsp;
64 bytes from 172.16.2.4: icmp_seq=1 ttl=63 time=5.63 ms&nbsp;
^C&nbsp;
--- 172.16.2.4 ping statistics ---&nbsp;
1 packets transmitted, 1 received, 0% packet loss, time 651ms&nbsp;
rtt min/avg/max/mdev = 5.636/5.636/5.636/0.000 ms&nbsp;
 &nbsp;
 &nbsp;
any idea ? &nbsp;
 &nbsp;
 &nbsp;
 &nbsp;
Thanks&nbsp;
Ian Wijaya &nbsp;

ian_wijaya_3781 · Answer

Never mind. Found it... 
&nbsp; iptables -I INPUT 13 -s 127.0.0.1 -d 127.0.0.1 -p tcp --dport 44444 -j ACCEPT 
&nbsp;  &nbsp;

Forum Discussion

APM on Linux Environment

1 Reply

Recent Discussions

Advise on setting up IRULE

google autenticator broken barcode

Port Group on F5OS network setting

vulnerabilities (CVE-2020-36363), CVE-2016-0736,CVE-2019-6593-FOR VERSION BIGIP LTM-16.1.4

Unwinding the Benefits of Investing in White Label Crypto Wallet

Related Content

APM - Software Check Antivirus does not work on Linux platforms

Create isolated environment for internal and external networks

Distributing Traffic Between Platform Agnostic Container Environments with BIG-IP DNS

Using F5's Terraform modules in an air-gapped environment

Issue accessing web servers through F5 setup on vmware lab environment