How to log connection attempts to VPN server

Discussion in 'Tomato Firmware' started by rico35, Mar 17, 2010.

  1. rico35

    Hello all,

    Because VPN connection from my office doesn't work, I would like to check firewall log.
    I selected "Connection logging" / Inbound / Both in GUI but I don't see any log in /var/log/messages even using online scanner (for wan interface) or local network VPN client (for lan interface) !

    Any idea ?

  2. SgtPepperKSU

    Unfortunately, VPN connectioned won't be logged that way. However, you can log everything by running this from the router shell via telnet/ssh:
    iptables -t mangle -I PREROUTING -j LOG
    Or, if you just want to log attempts at the VPN port:
    iptables -t mangle -I PREROUTING -p `nvram get vpn_server1_proto | sed 's/-.*//'` --dport `nvram get vpn_server1_port` -j LOG
  3. rico35

    Tks a lot SgtPepperKSU ! :)

    Now I see connection attemps in the log from online scanner.

    I hope that I will understand tomorrow why VPN connection from office can not be established.
