Hi Tom,
That's a shame. Are you thinking that others on the Shorewall mailing list
might be able to help?
We're looking to connect remote sites to a central Shorewall-based firewall and
have their Internet traffic pass via that server (rather than going direct.)
However, Tom and I can't
Hi Jason,
There is an article at https://libreswan.org/wiki/Subnet_extrusion that
discusses this configuration. The solution is expressed in *Swan syntax;
the basic features are:
- Both the left and right subnets are 0.0.0.0/0.
- On the responder side, a 'passthrough' policy is added to allow
Post your Shorewall config files.
zones
interfaces
hosts
tunnels
snat
I've found running conntrack is sometimes helpful in diagnosing problems.
'conntrack -L 2>&1 | grep 10.1.4.41'
Bill
On 10/3/2017 5:37 AM, Jason Timmins wrote:
Hi Tom,
That's a shame. Are you thinking that others on the