Tom Eastep wrote: > Philipp Rusch wrote: >> Hi all, >> maybe this is a seldom need, but we have to route traffic between ipsec >> zones >> and openvpn zones. This is on a SUSE 10.1 system with kernel 2.6.16 .... >> and shorewall 4.0.4. I searched the documentation but couldn't fin a >> solution, >> I tried to define "routeback" option on my openvpn zones, this did not >> change >> a thing. As far as I understand this problem, my problem is that there is no >> virtual device like ipsec0 anymore to which I could add routes to. Openvpn >> has its "tun" devices, this is no problem, but how to route between >> these zones ? >> Any hint is much appreciated ! > > You simply define SPs on the gateways that require traffic between the two > endpoints to be encrypted. Normal routing takes over from there.
Is your problem that the forwarded traffic is being rejected by the firewall as shown in the "Shorewall" log? -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ [EMAIL PROTECTED] PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
