From: psnizek_at_belfin.ch
Date: Tue Jan 14 2003 - 19:21:06 CET
I'm afraid this was a misunderstanding
> > The tunnels are getting established and I can connect to
> the freeswan box'
> > lan if from the lan behind each hardware firewall.
> > If I'm on the freeswan box I can't ping the boxes neither behind the
> > sonicwall nor behind the netscreen. All filters on the
> freeswan box are
> > disabled.
it's not
lan - sonicwall - freeswan - netscreen - lan
making the freeswan box another gateway. The freeswan box isn't a gateway
it's supposed to be a sniffing machine with 2 eths but only one attached to
a network.
The scheme looks like this:
freeswan box netscreen
lan_if wan_if --- wan_if lan_if -- lan
I can connect from the netscreen lan to the freeswan box' lan_if
But I cannot ping or telnet mailhost 25 any machine in the netscreen lan
from the freeswan box. but that's what I need most. I intend to send alerts
through the ipsec tunnel.
TIA
Philipp
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.5 : Wed Jan 15 2003 - 20:11:40 CET