On 10/19/2012 10:01 AM, Jernej Simončič wrote: > On 19. oktober 2012, 16:23:16, Tom Eastep wrote: > >> Okay. There has to be something more than just IPSEC since a plain IPSEC >> tunnel doesn't use a tap device. I think it is time that you sent me the >> output of 'shorewall dump', produced while the tunnel is up. > > ShrewSoft is IPSec, but uses a virtual network adaptor to establish > the connection (you can use it as an OpenSwan or racoon client). >
Ah -- then that means that the Shorewall configuration is best configured as shown at http://www.shorewall.net/IPSEC-2.6.html. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ Everyone hates slow websites. So do we. Make your web apps faster with AppDynamics Download AppDynamics Lite for free today: http://p.sf.net/sfu/appdyn_sfd2d_oct _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
