On 4/30/2015 11:47 AM, Vernon Fort wrote: >>> On 4/10/2015 7:37 AM, Vernon Fort wrote: I know I am missing >>> something but I cannot find what. I have a working Shorewall >>> mulitisp along with a working strongswan VPN. However, when I do >>> issue a 'shorewall restart', traffic on the vpn tunnel stops. >>> The ipsec statusall shows the connection still active and up but >>> no traffic passes nor do I see anything in the logs indicating >>> that Shorewall is blocking anything. >> > >> Have you compared the output of 'shorewall dump' before and after >> restart? > > I have compared a Shorewall dump before and after a 'shorewall > restart'. The only thing different is the packet counts. Nothing > different in the routing tables (netstat -nr) or the 'ipsec > statusall'. If I issue a 'shorewall -n restart', the VPN will still > pass traffic meaning all is still functioning after a restart. But > I'm not sure if that's the best way to solve this issue, meaning > adding the -n to the Shorewall command. I can send you the before > and after dumps or anything else. >
Let's start with the dumps. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ One dashboard for servers and applications across Physical-Virtual-Cloud Widest out-of-the-box monitoring support with 50+ applications Performance metrics, stats and reports that give you Actionable Insights Deep dive visibility with transaction tracing using APM Insight. http://ad.doubleclick.net/ddm/clk/290420510;117567292;y
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
