Hi, 191.168.0.0/16 (lan1)----Shorewall + IPSEC---192.168.0.1/24-----switch-----192.168.0.3/24--------MNF2-------10.71 .60.0/24 (lan2)
The MNF2 is very functionnal and it's not a problem. The ipsec tunnel is good established. eth5 is ipsec0 When the client-lan1 ping the client-lan2, shorewall say: wan2all:DROP:IN=eth5 OUT= SRC=192.168.2.3 DST=192.168.2.1 When the client-lan2 ping the client-lan1: same message: wan2all:DROP:IN=eth5 OUT= SRC=192.168.2.3 DST=192.168.2.1 But when i stop shorewall the ping is functionnal (throught the vpn of course) in two direction, proof that mnf2 is not in question. Thanks for your patience VUILLET Damien ----- Original Message ----- From: "Tom Eastep" <[EMAIL PROTECTED]> To: "Shorewall Users" <[email protected]> Sent: Monday, December 18, 2006 7:22 PM Subject: Re: [Shorewall-users] shorewall + ipsec openswan > ------------------------------------------------------------------------- > Take Surveys. Earn Cash. Influence the Future of IT > Join SourceForge.net's Techsay panel and you'll get the chance to share your > opinions on IT & business topics through brief surveys - and earn cash > http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV ---------------------------------------------------------------------------- ---- > _______________________________________________ > Shorewall-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/shorewall-users >
status.txt.gz
Description: GNU Zip compressed data
------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
