[Openswan Users] multiple subnets ?
Peter McGill
petermcgill at goco.net
Mon Jun 30 12:22:30 EDT 2008
I used to suggest -j RETURN, I do not recall why
I started suggesting -j ACCEPT, but both should work.
Logically, -j RETURN results in an implicit ACCEPT
being it is the policy for the nat POSTROUTING chain.
Peter McGill
IT Systems Analyst
Gra Ham Energy Limited
> -----Original Message-----
> From: Paul Wouters [mailto:paul at xelerance.com]
> Sent: June 30, 2008 11:46 AM
> To: Peter McGill
> Cc: 'Indunil Jayasooriya'; users at openswan.org
> Subject: RE: [Openswan Users] multiple subnets ?
>
> On Mon, 30 Jun 2008, Peter McGill wrote:
>
> > I assume you meant to do:
> > iptables -t nat -A POSTROUTING -o eth1 -d 10.254.6.172/32 -j ACCEPT
> > Which would be correct.
>
> Shouldn't that be "-j RETURN" ?
>
> Paul
More information about the Users
mailing list