Same problem with Bering RC3 and IPSEC509 package, when i try to start ipsec he gives me the error: unable to determine address of eth0 (i have %defaultroute as interface in ipsec.conf)
and i have many AH fields in the iptables -L output (AH is Authenticated Headers, right ???, but i cant find any note about that in the Shorewall rules file ......) Please Help me. Bye Marco ----- Original Message ----- From: "Tom Eastep" <[EMAIL PROTECTED]> To: "leaf" <[EMAIL PROTECTED]> Sent: Monday, July 15, 2002 4:00 PM Subject: Re: [leaf-user] problem with _startklips on bering rc3 > >From your post: > -------------------------------------------------------------------------- > + iptables -L -v -n > Chain INPUT (policy DROP 0 packets, 0 bytes) > pkts bytes target prot opt in out source > destination > 0 0 ACCEPT ah -- lo * 0.0.0.0/0 > 0.0.0.0/0 > 952 86132 ppp0_in ah -- ppp0 * 0.0.0.0/0 > 0.0.0.0/0 > 9 1163 eth1_in ah -- eth1 * 0.0.0.0/0 > 0.0.0.0/0 > 0 0 ipsec0_in ah -- ipsec0 * 0.0.0.0/0 > 0.0.0.0/0 > 0 0 common ah -- * * 0.0.0.0/0 > 0.0.0.0/0 > 0 0 LOG ah -- * * 0.0.0.0/0 > 0.0.0.0/0 LOG flags 0 level 6 prefix `Shorewall:INPUT:REJECT:' > 0 0 reject ah -- * * 0.0.0.0/0 > 0.0.0.0/0 > -------------------------------------------------------------------------- - > What in the world is going on with Shorewall? All of those "ah" in the > protocol column are wrong. > > If you haven't modified the Shorewall 'firewall' script, please "shorewall > debug restart" 2> /tmp/trace and send me the /tmp/trace file (if you have > modified the script, put it back the way it was). > > -Tom > -- > Tom Eastep \ Shorewall - iptables made easy > AIM: tmeastep \ http://www.shorewall.net > ICQ: #60745924 \ [EMAIL PROTECTED] > > > > ------------------------------------------------------- > This sf.net email is sponsored by:ThinkGeek > Welcome to geek heaven. > http://thinkgeek.com/sf > ------------------------------------------------------------------------ > leaf-user mailing list: [EMAIL PROTECTED] > https://lists.sourceforge.net/lists/listinfo/leaf-user > SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html > > ------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
