I'm not an expert on infrastructure. I'm developer and i don't have much knowledgement about firewall and linux.<br><br>I tried to run these commands to open the UDP Port 500.<br><br>iptables -A INPUT -p udp --sport 500 --dport 500 -j ACCEPT<br>
iptables -A OUTPUT -p udp --sport 500 --dport 500 -j ACCEPT<br># we need to allow ESP<br>iptables -A INPUT -p 50 -j ACCEPT<br>iptables -A OUTPUT -p 50 -j ACCEPT<br># and AH r<br>iptables -A INPUT -p 51 -j ACCEPT<br>iptables -A OUTPUT -p 51 -j ACCEPT<br>
<br>iptables -A FORWARD -i eth1 -o eth0 -j ACCEPT<br>iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE<br><br><br>But the same message persist. <br><br>1) How commands should i execute to resolve this error ?<br>2) What ports and rules should be appended to firewall to make openswan works on linux, there is any document for this ?<br>
<br>Thanks.<br>Victor <br><br><div class="gmail_quote">2011/7/28 Paul Wouters <span dir="ltr"><<a href="mailto:paul@xelerance.com">paul@xelerance.com</a>></span><br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
<div class="im">On Thu, 28 Jul 2011, <a href="mailto:victorjabur@gmail.com" target="_blank">victorjabur@gmail.com</a> wrote:<br>
<br>
</div><div class="im"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
I correct the command leftxauthuser to leftxauthusername and it works.<br>
<br>
This is the currently log, can you tell me why the connection isn't work ?<br>
</blockquote>
<br></div><div class="im">
000 #2: "company":500 STATE_MAIN_I1 (sent MI1, expecting MR1); EVENT_RETRANSMIT in 22s; nodpd; idle; import:admin<br>
<br></div>
Your first packet is not received or answered. Check firewall rules.<br><font color="#888888">
<br>
Paul<br>
</font></blockquote></div><br><br clear="all"><br>