Ok, I found a missing link in the IPSEC configuration. Things are working now. One essential point to mention is, that the declaration of the vpn zone in /etc/shorewall/zones has to be first, before the declaration of the net zone. If you don't do this, Shorewall will put the connection into the net zone evaluating the policies.
Regards, Christian ------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/ _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
