|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
wilm_at_tas.nl
Date: Thu Nov 07 2002 - 06:24:46 CST
I don't think SuSEfirewall doesnot support VPN. Try shorewall
(www.shorewall.net)
***************************************************
In theory, theory and practice are the same.
In practice, they're not.
***************************************************
Philipp Rusch
<philipp.rusch
ru To: <suse-securitysuse.com>
sch-edv.de> cc:
Subject: [suse-security] VPN / FreeSWAN / SuSEFirewall2 - Problem
07/11/2002 12:16
Hello list,
I don't get my VPN to work through the firewall ...
Negotiation of tunnel is okay, that one gets established,
but my question is:
The firewall is blocking packets from ipsec0, no matter
what I define in SuSEFirewall2-rules,
either it blocks packets from roadwarrior's ip address to
internal IPs as "unauthorized target", if I define
FW_AUTOPROTECT_SERVICES="yes", or it drops those packets,
if defined as FW_AUTOROTECT_SERVICES="no" .
Configuration: SuSE 8.0/Kernel 2.4.18
FreeSWAN 1.98b, new X.509 Patches
SuSEFirewall2 with :
NO Masquerading
FW_DEV_EXT="eth0 ipsec0"
FW_ROUTE="yes" ("no" gives same result)
FW_SERVICES_EXT_UDP="500"
FW_SERVICES_EXT_IP="50"
FW_AUTOPROTECT_SERVICES="no"
Did I miss something ?
TIA !
Regards from Germany,
Mit freundlichem Gruß, Philipp Rusch
-- Check the headers for your unsubscription address For additional commands, e-mail: suse-security-help-- Check the headers for your unsubscription address For additional commands, e-mail: suse-security-help
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]