Timothy Selivanow wrote: > I've looked at a number of docs for a couple of days now, and while I've > made some progress, I've hit a wall that is baffling me.
That's because you are trying to use ESP within AH. None of the Shorewall documents cover that setup since AH is rarely used and the method for defining its use to Netfilter is pretty much undocumented. Getting this to work with Shorewall is going to take a lot of time, a lot of experimentation and acquiring a lot of knowledge about how both the Netfilter 'policy' match works and how IPSEC works. I personally don't have the time right now to get involved. Sorry, -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ [EMAIL PROTECTED] PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------- This SF.net email is sponsored by the 2008 JavaOne(SM) Conference Don't miss this year's exciting event. There's still time to save $100. Use priority code J8TL2D2. http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone
_______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
