HELP! -- I just can't seem to figure out how to configure this.I have a Shorewall/IPSEC VPN gateway configuration that is working great to my remote sites. Doing gateway to gateway and gateway to client tunnels where I have no network overlap issues. Where I am stuck at is I need to NAT my network to a different private network as the remote site already is using my private network range.
I am using Debian 11 with v5.2.3.4 Shorewall.But I have a site where there is an address conflict so I need to remap my 10.5.6.0/24 network to 172.17.249.0/24
to avoid issues. They already have a 10.5.6.0/24 network in their systems.I have the tunnel up and functional and stations behind the firewall can access the servers behind their firewall. My issue is need to 'ping' the 172.28.0.82 server from the gateway/firewall machine(10.5.6.1) but it fails.
A machine behind firewall(10.5.6.2) can 'ping' without an issue. Did I miss something in my config to allow this, or is it not possible? Thank you in advance. -- Rich Goodwin Elmen Enterprises/Appliance & Furniture RentAll/KTTW 2901 W 11th Street Sioux Falls, SD 57104 Voice: (605) 338-1800 x220 Fax: (605) 275-8361 E-mail: rgood...@rentall-inc.com ------------------------------------------------- Confidentiality Notice: This e-mail message, including any attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure, or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. ------------------------------------------------- -- This email has been checked for viruses by AVG antivirus software. www.avg.com
shorewall_dump.txt.gz
Description: GNU Zip compressed data
_______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
