Note: This archive passes through spamassassin. Every mail marked with the subject "*****SPAM*****" has exceed a certain threshold of spam-like behaviour.

Re: [Users] ipsec+nat: _updown for netfilter/iptables needed

From: Andreas Marbet (andreas.marbet_at_bluefire.ch)
Date: Fri Mar 22 2002 - 21:46:03 CET

Next message: Bernd Bartmann: "[Users] IPSEC.EXE and non administrative user"
Previous message: D. Hugh Redelmeier: "Re: [Users] Problems with freeswan and SSH Sentinel"
Maybe in reply to: Fan Jiao: "[Users] ipsec+nat: _updown for netfilter/iptables needed"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Have a look at
http://www.nadmm.com/show.php?story=articles/vpn.inc

it explains how to integrate a patch for iptables into _updown
works seamlessly for me (collapsed firewall with masquerading and
VPN-Gateway)

hope this helps

Andreas

----- Original Message -----
From: "Fan Jiao" <fan_at_netridge.com>
>
> Wanted to use FreeS/WAN and NAT in one gateway.
> According to the document "FreeS/WAN and firewall",
> I could have "leftfirewall=yes" to use the default _updown
> scripts. However I am using netfilter rather than ipchains, and
> the script uses ipfwadm that doesn't work with netfilter.
>
> Is there a new _updown supporting iptables?

_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users

Next message: Bernd Bartmann: "[Users] IPSEC.EXE and non administrative user"
Previous message: D. Hugh Redelmeier: "Re: [Users] Problems with freeswan and SSH Sentinel"
Maybe in reply to: Fan Jiao: "[Users] ipsec+nat: _updown for netfilter/iptables needed"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.3 : Mon Jul 29 2002 - 05:19:46 CEST