>>On 4/10/2015 7:37 AM, Vernon Fort wrote: >> I know I am missing something but I cannot find what. I have a >> working Shorewall mulitisp along with a working strongswan VPN. >> However, when I do issue a 'shorewall restart', traffic on the vpn >> tunnel stops. The ipsec statusall shows the connection still active >> and up but no traffic passes nor do I see anything in the logs >> indicating that Shorewall is blocking anything. >
>Have you compared the output of 'shorewall dump' before and after restart? I have compared a Shorewall dump before and after a 'shorewall restart'. The only thing different is the packet counts. Nothing different in the routing tables (netstat -nr) or the 'ipsec statusall'. If I issue a 'shorewall -n restart', the VPN will still pass traffic meaning all is still functioning after a restart. But I'm not sure if that's the best way to solve this issue, meaning adding the -n to the Shorewall command. I can send you the before and after dumps or anything else. Vernon ------------------------------------------------------------------------------ One dashboard for servers and applications across Physical-Virtual-Cloud Widest out-of-the-box monitoring support with 50+ applications Performance metrics, stats and reports that give you Actionable Insights Deep dive visibility with transaction tracing using APM Insight. http://ad.doubleclick.net/ddm/clk/290420510;117567292;y _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
