[Openswan Users] configuration question
Mads Rasmussen
mads at grupof.com.br
Sun Jan 30 14:14:19 CET 2005
Paul Wouters wrote:
> Exclude NAT for packets from 10/8 to/from 10/8.
>
would the updown script do this?
it has the following rules:
iptables -I INPUT 1 -i $PLUTO_INTERFACE -p $PLUTO_MY_PROTOCOL \
-s $PLUTO_PEER_CLIENT_NET/$PLUTO_PEER_CLIENT_MASK $S_PEER_PORT \
-d $PLUTO_ME $D_MY_PORT -j ACCEPT
iptables -I OUTPUT 1 -o $PLUTO_INTERFACE -p $PLUTO_PEER_PROTOCOL \
-s $PLUTO_ME $S_MY_PORT \
-d $PLUTO_PEER_CLIENT_NET/$PLUTO_PEER_CLIENT_MASK
$D_PEER_PORT -j AC
CEPT
> Your config looksed fine.
>
> Paul
thanks
mads
--
No virus found in this outgoing message.
Checked by AVG Anti-Virus.
Version: 7.0.300 / Virus Database: 265.8.2 - Release Date: 28/1/2005
More information about the Users
mailing list