me -> VPN -> TOR

someuzer · January 6, 2016, 4:30pm

Hi,

why it doesn’t work anymore? This is what happens when enabling VPN_FIREWALL=1

user@host:/etc/whonix_firewall.d$ sudo whonix_firewall
OK: Loading Whonix firewall…
OK: TOR_USER: 104
OK: CLEARNET_USER: 1001
OK: USER_USER: 1000
OK: ROOT_USER: 0
iptables v1.4.21: iprange: Bad value for “–dst-range” option: "192.168.1.0/24"
Try `iptables -h’ or ‘iptables --help’ for more information.
##################################################
Whonix firewall script failed!
##################################################
user@host:/etc/whonix_firewall.d$

Patrick · January 6, 2016, 4:52pm

Most probable cause is you having made a mistake in the config. Touching variable NON_TOR_GATEWAY. Which is in most cases not required. Not only touching it, but also filling it with invalid values.

entr0py · January 6, 2016, 7:52pm

I was unable to use CIDR notation (192.168.1.0/24) when specifying a range for the LOCAL_NET parameter in VPN-Firewall. (I think it worked in Whonix 11.)

Specifying the range like this: “192.168.1.0-192.168.1.255” works fine. Has iptables changed?