Hi I have reading the help in firewall/tunnel
but i have not making: ---------------------------------------------------------------------------- ------------- The Rules section will configure the firewall Rules : You might need to allow the 500 port udp traffic on the CA and on the client. See the VPN section for more details on the CA. Example for a VPN client: ACCEPT fw wan udp 500 Or, on the CA: ACCEPT wan fw udp 500 ---------------------------------------------------------------------------- ---------------- but the vpn is good established between mnf1 and mnf2 i thank that the 500 udp port is opening on demand ! (on the vpn client and on the vpn server) also the 500 udp port on the CA is not seeing open ! Thanks VUILLET Damien ----- Original Message ----- From: "Florin" <[EMAIL PROTECTED]> To: <[email protected]> Sent: Monday, January 03, 2005 4:47 PM Subject: Re: [Security Firewall] vpn freeswan between mnf1 and mnf2 > "lpadumorvan" <[EMAIL PROTECTED]> writes: > > > Hi > > > > in the mnf2, i make a zone "vpn" but witch interface can i choice for this > > zone ? > > > > the interface "ipsec0" is not present on the mnf2 ! > > > > i have choice "tun0" and the vpn between mnf1 and mnf2 is good > > established...... > > > > but: > > > > Is my choice "tun0" really good for the interface of the zone "vpn" on the > > mnf2 (with freeswan use)? because "tun0" is for openvpn > > (http://shorewall.net/OPENVPN.html) > > > > thanks > > > > VUILLET Damien > > Hi, > > This question has been answered several times here. > Simply read the online help page in the firewall->tunnels section and you > will notice that you don't need to choose an ipsec0 interface for freeswan > because this interface does not exist anymore with the 2.6 and above > kernels. The shorewall configuration is done in a different way. You can > also read the documentation from the shorewall.net web site ... > > Let me know if you have a problem ... > > Have a nice day, > -- > Florin http://www.mandrakesoft.com > http://people.mandrakesoft.com/~florin/ > > ---------------------------------------------------------------------------- ---- > ____________________________________________________ > Want to buy your Pack or Services from MandrakeSoft? > Go to http://www.mandrakestore.com > Join the Club : http://www.mandrakeclub.com > ____________________________________________________ >
____________________________________________________ Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com ____________________________________________________
