> Just wanted to confirm that ipmasqadm portfw > can *only* handle tcp and udp right now behind the -P > switch. Yes? I believe so. > If so...then to confirm: IPSec (even using > *only* tunnel-mode ESP and not AH) and PPTP must > terminate on a masq'ing firewall router right now. > Or, is there some other way to forward IP protocols > 47, 50 and 51. yes using ipfwd and ipmasqadm, this might not be what you wanted, but I'll still post it, I once saw in a *sort of ipsec how-to* the use of ipfwd to forward generic ip trafic: ipfwd -masq <interal_machine> 50 & here is a link to an lrp post about it: (masqed server pptp example) http://www.geocrawler.com/lists/3/Linux/303/0/5255880/ > Also...has anyone built a redir.lrp or IPFwd.lrp > package yet, or have I found something else to do? :) > Thanks! my lrp 2.9.4 has IPFwd, don't know about the other distros. hope to have helped. another thing, is anyone *building* an iptables rule set yet? I'm, and I'd like to compare/enhance it. made a stand_alone_with_internet_connection rule set, am doing a simple masq router rule set, when finished I'll move to the full multi_homed routing with dmz. I've seen some sparse examples, some with nonsense rules, some completely wrong rules, some right but too simple!!! anyone? pedro > -Scott > > > > > _______________________________________________ > Leaf-devel mailing list > [EMAIL PROTECTED] > http://lists.sourceforge.net/lists/listinfo/leaf-devel > _______________________________________________ Leaf-devel mailing list [EMAIL PROTECTED] http://lists.sourceforge.net/lists/listinfo/leaf-devel
