From: Tom E. <te...@sh...> - 2002-10-31 14:26:04
|
Homer Parker wrote: > On Wed, 30 Oct 2002 09:23:52 -0800 Tom Eastep <te...@sh...> > wrote.... > > >>You can of course simply take the brute force approach and add this to >>your rules file: >> >>ACCEPT fw net icmp 0 >> >>Don't know where that will lead though... > > > Here's the page at FreeS/Wan that tells how to set up the firewall for an > opportunistic gateway... I tried to implement this in shorewall, but... I > must of missed something... Not getting the ICMP errors, but am getting > the other error still, and no data transfer :( Can you convert these to > shorewall rules for me? Thanks! > No I won't, but I'll tell you to add an ipsec tunnel entry in /etc/shorewall/tunnels -- that produces the same rules. -Tom -- Tom Eastep \ Shorewall - iptables made easy AIM: tmeastep \ http://www.shorewall.net ICQ: #60745924 \ te...@sh... |