Hi All, I am configuring two Bering firewalls with an ipsec gateway, linking the two private subnets on each firewall.
I have setup the ipsec configuration, but I am struggling with Shorewall. I realise I need to allow UDP port 500 and protocols 50,51. But I am not sure how to apply this in the shorewall rules. Do I need to allow rules between the fw zone and loc zone, or net zone to loc zone? Her is my config ZONES net Internet loc Local gw ipsec POLICY loc gw ACCEPT gw loc ACCEPT RULES ACCEPT net fw udp 500 ACCEPT net fw 50 ACCEPT net fw 51 ACCEPT fw net udp 500 ACCEPT fw net 50 ACCEPT fw net 51 Regards, Simon Chalk. ------------------------------------------------------- This SF.net email is sponsored by: ValueWeb: Dedicated Hosting for just $79/mo with 500 GB of bandwidth! No other company gives more support or power for your dedicated server http://click.atdmt.com/AFF/go/sdnxxaff00300020aff/direct/01/ ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
