[Openswan Users] firewalling
Paul Wouters
paul at xelerance.com
Fri Nov 10 18:22:39 EST 2006
On Thu, 9 Nov 2006, Mark Olliver wrote:
> I have a firewall which is stuck allowing packets back into it.
>
> It can send out ESP packets and see them come back in however they never
> make it between eth1 and ipsec0.
>
>
> Host A behind firewall A can send a ping request to Host B it replies but
> the reply never gets back to Firewall A's ipsec0 interface it does leave
> Firewall B's server.
run ipsec verify. most likely you have not enabled forwarding.
Paul>
--
Building and integrating Virtual Private Networks with Openswan:
http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
More information about the Users
mailing list