Mike Jaquays wrote: > The remote side admin has requested we source nat all of our local > network traffic to avoid network conflicts and such. Trust me, if it > weren't a requirement from our remote partner I wouldn't even bother. >
Then I would: a) Delete the 2.2.2.0/24<->3.3.3.0/24 security policies. b) Remove the IPSEC 'OPTIONS' from your masq rule. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ [EMAIL PROTECTED] PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------- SF.Net email is sponsored by: Check out the new SourceForge.net Marketplace. It's the best place to buy or sell services for just about anything Open Source. http://ad.doubleclick.net/clk;164216239;13503038;w?http://sf.net/marketplace
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
