From: Emiliano (emiliano_at_climafin.com.ar)
Date: Mon Jan 13 2003 - 15:22:22 CET
> On Fri, 10 Jan 2003, Emiliano wrote:
>
> > Take a look to my iptables rules.
> >
> > Chain INPUT (policy DROP)
> > target prot opt source destination
> > ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0
> > ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp spt:500
> > dpt:500
> > ACCEPT esp -- 0.0.0.0/0 0.0.0.0/0
> > ACCEPT ah -- 0.0.0.0/0 0.0.0.0/0
> >
> > Chain OUTPUT (policy DROP)
> > target prot opt source destination
> > ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0
> > ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp spt:500
> > dpt:500
> > ACCEPT esp -- 0.0.0.0/0 0.0.0.0/0
> > ACCEPT ah -- 0.0.0.0/0 0.0.0.0/0
>
> I need more information. As you attempt to connect, diff the output of
> "iptables -L -n -v" taken twice, as a before and after snapshot. It will
show
> you which iptables rules (if any) the packets are falling afoul of.
Barring
> that, post the output of the ipsec barf command to the web. Perhaps we can
> find something else in your system config that is causing a problem
> (rp_filter? I doubt it.)
> - --
> Sam Sgro
> sam_at_freeswan.org
ok here is mi ipsec barf, please take a look.
http://www.climafin.com.ar/ipsec.txt
Tks.
Emiliano.
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.5 : Wed Jan 15 2003 - 20:11:39 CET