From: Emiliano (emiliano_at_climafin.com.ar)
Date: Mon Jan 13 2003 - 20:33:19 CET
> > On Fri, 10 Jan 2003, Emiliano wrote:
> >
> > > Take a look to my iptables rules.
> > >
> > > Chain INPUT (policy DROP)
> > > target prot opt source destination
> > > ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0
> > > ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp
spt:500
> > > dpt:500
> > > ACCEPT esp -- 0.0.0.0/0 0.0.0.0/0
> > > ACCEPT ah -- 0.0.0.0/0 0.0.0.0/0
> > >
> > > Chain OUTPUT (policy DROP)
> > > target prot opt source destination
> > > ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0
> > > ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp
spt:500
> > > dpt:500
> > > ACCEPT esp -- 0.0.0.0/0 0.0.0.0/0
> > > ACCEPT ah -- 0.0.0.0/0 0.0.0.0/0
> >
> > I need more information. As you attempt to connect, diff the output of
> > "iptables -L -n -v" taken twice, as a before and after snapshot. It will
> show
> > you which iptables rules (if any) the packets are falling afoul of.
> Barring
> > that, post the output of the ipsec barf command to the web. Perhaps we
can
> > find something else in your system config that is causing a problem
> > (rp_filter? I doubt it.)
> > - --
> > Sam Sgro
> > sam_at_freeswan.org
>
ok here is mi ipsec barf, please take a look.
http://www.climafin.com.ar/ipsec.txt
Tks.
Emiliano.
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.5 : Tue Jan 14 2003 - 05:21:14 CET