thomas.gusenleitner@com-bet.com
2002-Jan-23 08:00 UTC
[Shorewall-users] shorewall/seawall freeswan howto
Hi ! I've a two subnets subnet 1(172.16.0.0/24) with an shorewall 1.2.3/freeswan1.93 and subnet 2 (192.168.0.128/25) with seawall3.2/freeswan 1.5 I cann't upgrade the seawall firewall to shorewall , because it's located in anohter country. now i tried to connect them with an ipsec tunnel. with my old fw on subnet 1 (it was an seawall 3.2) it works fine. i can establish a tunnel,but i cann't send anything to the other subnet ? need i a zone for the 2 subnet ? rules & policys ? can anyone send me an detailed example ? bye, thomas
On Wednesday 23 January 2002 12:00 am, hostmaster@com-bet.com wrote:> Hi !=0D > =0D > I''ve a two subnets subnet 1(172.16.0.0/24) with an shorewall > 1.2.3/freeswan1.93 and subnet 2 (192.168.0.128/25) with seawall3.2/freeswan > 1.5=0D=20 > I cann''t upgrade the seawall firewall to shorewall , because it''s located > in anohter country. =0D=20 > now i tried to connect them with an ipsec tunnel. with my old fw on subnet > 1 (it was an seawall 3.2) it works fine. =0D i can establish a tunnel,but i > cann''t send anything to the other subnet ?=20 > need i a zone for the 2 subnet ?=0D > rules & policys ?=0D > =0D > can anyone send me an detailed example ?=0D > =0DHave you looked at http://www.shorewall.net/myfiles.htm#Old? That=20 configuration has a working IPSEC tunnel to a zone called "tx". -Tom --=20 Tom Eastep \ A Firewall for Linux 2.4.* AIM: tmeastep \ http://www.shorewall.net ICQ: #60745924 \ teastep@shorewall.net
Thomas Gusenleitner
2002-Jan-23 14:57 UTC
[Shorewall-users] shorewall/seawall freeswan howto
Hi Tom! thats exactly what i need :-)) thanx ----- Original Message ----- From: "Tom Eastep" <teastep@shorewall.net> To: "thomas.gusenleitner@com-bet.com" <hostmaster@com-bet.com>; <shorewall-users@shorewall.net> Sent: Wednesday, January 23, 2002 3:55 PM Subject: Re: [Shorewall-users] shorewall/seawall freeswan howto On Wednesday 23 January 2002 12:00 am, hostmaster@com-bet.com wrote:> Hi ! > > I've a two subnets subnet 1(172.16.0.0/24) with an shorewall > 1.2.3/freeswan1.93 and subnet 2 (192.168.0.128/25) with seawall3.2/freeswan > 1.5 > I cann't upgrade the seawall firewall to shorewall , because it's located > in anohter country. > now i tried to connect them with an ipsec tunnel. with my old fw on subnet > 1 (it was an seawall 3.2) it works fine. i can establish a tunnel,but i > cann't send anything to the other subnet ? > need i a zone for the 2 subnet ? > rules & policys ? > > can anyone send me an detailed example ? >Have you looked at http://www.shorewall.net/myfiles.htm#Old? That configuration has a working IPSEC tunnel to a zone called "tx". -Tom -- Tom Eastep \ A Firewall for Linux 2.4.* AIM: tmeastep \ http://www.shorewall.net ICQ: #60745924 \ teastep@shorewall.net