Hi all, i have setup a Bering-uClibc 1.1 version with ipsec.lrp and shorewall. I have some tunnels running with out a problem. No i like to setup some Road Warrior users.
I follow the settings under <http://www.shorewall.net/IPSEC.htm>. In /etc/shorewall/zones i put: ZONE DISPLAY COMMENTS mvpn MVPN Mobile User one mvpn1 MVPN1 Mobile User two .... etc. In /etc/shorewall/tunnels i put: TYPE ZONE GATEWAY GATEWAY ZONE ipsec net 0.0.0.0/0 mvpn,mvpn1,mvpn2,.... I named the conection in my ipsec.conf like the Zones. When the User is activating the tunnel there is no call to /sbin/shorewall add ipsec0:xxx.xxx.xxx.xxx mvpn I need to setup dif. rules for each mobile user. So i was thinking to control this over the zone name (eg. mvpn1 <-> loc, mvpn2 only port 80 to loc etc) But how is shorewall seeing that this user is now aktiv?? Thanks for your help Guillermo ------------------------------------------------------- This SF.net email is sponsored by: The Definitive IT and Networking Event. Be There! NetWorld+Interop Las Vegas 2003 -- Register today! http://ads.sourceforge.net/cgi-bin/redirect.pl?keyn0001en ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
