[Openswan Users] Strange problem after updating from kernel2.6.8 to 2.6.18
Balázs Bárány
bb at apc.ag
Tue Dec 11 04:32:40 EST 2007
Hello,
* Marco Berizzi <pupilla at hotmail.com> [2007-12-11 09:47]:
> Are you using ipcomp? If so you must also accept packet with protocol 4.
> It is know bug to the netfilter team.
thank you! This is very good information. I'll try that and update the
Openswan wiki: http://wiki.openswan.org/index.php/Openswan/ConfFirewall
> There is nothing special to do. Since 2.6.16 netfilter will 'see' clear
> packets: so there must be a rule to accept them somewhere:
> iptables -I FORWARD -s source_net -d dest_net -j ACCEPT
> iptables -I FORWARD -d source_net -s dest_net -j ACCEPT
I had similar rules, they just didn't get any packets.
Thanks!
--
Balázs Bárány
Information Services Development
apc interactive solutions AG
Brigittenauer Lände 50-54/1, 2.OG
A-1200 Wien
Handelsgericht Wien FN 191 435y
balazs.barany at apcinteractive.net http://www.apcinteractive.net
More information about the Users
mailing list