[EMAIL PROTECTED] wrote: VPN > works. > > Does anyone have any suggestions on how to implement the source > rewriting rule? >
Once again, _the proper way to fix this is in IPSEC, not in Shorewall_. In the Shorewall IPSEC article (http://www1.shorewall.net/IPSEC-2.6.html), you will find the eight (8) Security Policies that you need for full interaction between the two local networks and their gateways. If you do it that way, then you don't have to resort to address rewriting hacks. If you really want to hack around it in Shorewall, then you need an entry in /etc/shorewall/masq to rewrite the source IP address in connections from the local external IP to the remote LAN. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ [EMAIL PROTECTED] PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------- SF.Net email is sponsored by: Check out the new SourceForge.net Marketplace. It's the best place to buy or sell services for just about anything Open Source. http://sourceforge.net/services/buy/index.php
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
