Displaying 8 results from an estimated 8 matches for "ipsecfile".
2006 Apr 20
2
interface problem
I changed the zones file like below:
fw firewall
net network
loc local
and then restart the shorewall ......
[root@shorewall shorewall]# shorewall restart
Loading /usr/share/shorewall/functions...
Processing /etc/shorewall/params ...
Processing /etc/shorewall/shorewall.conf...
Loading Modules...
Restarting Shorewall...
Initializing...
Shorewall has
2006 Apr 02
5
Help with Webmin Module
Hello People
I''m new here, so forgive-me for any "newbie talk".
My client is running Debian Sarge (Stable), with Shorewall and Webmin. I want
to make things easier for them and tried to use the webmin-shorewall module.
The thing is - the installed shorewall is 3.0.5 (package from testing) but the
webmin module only understands (and builds) the old shorewall 2.x file
2006 Sep 05
5
two-interfaces problem
When I install the two-interfaces files in /etc/shorewall on my FC-5 system
(with shorewall-3.2.3) and run "services shorewall restart" I get
------------------------------------------------------
cp -a interfaces masq policy routestopped rules zones /etc/shorewall/
...
[root@alfred shorewall]# service shorewall restart
...
Determining Zones...
ERROR: Zone fw is defined more than once
2006 Feb 07
0
WG: AW: WG: proxyarp <--> OpenSwan VPN/Internet
...N/Internet
On Tuesday 07 February 2006 07:01, info@kws-netzwerke.de wrote:
> I´ve tried to play with mss values in /et c/shorewall/ipsec
>
> vpn yes mode=tunnel mss=1400(1500,1384,1416,1452,1344)
Which version of Shorewall are you running and what is your setting for
IPSECFILE (if any) in /etc/shorewall/shorewall.conf?
>
> After all I decided to leave /etc/shorewall/ipsec empty. Further the
> problem seems to be out of the tunnel, too. I think ipsec file won´t help
> with issues out of the ipsec tunnel.
>
That''s exactly what it''s for!...
2006 Aug 29
3
masq problem
...ST_LOG_LEVEL=info
TCP_FLAGS_LOG_LEVEL=info
RFC1918_LOG_LEVEL=info
SMURF_LOG_LEVEL=info
LOG_MARTIANS=No
IPTABLES=
PATH=/sbin:/bin:/usr/sbin:/usr/bin:/usr/local/bin:/usr/local/sbin
SHOREWALL_SHELL=/bin/sh
SUBSYSLOCK=""
MODULESDIR=
CONFIG_PATH=/etc/shorewall:/usr/share/shorewall
RESTOREFILE=
IPSECFILE=zones
FW=
IP_FORWARDING=Keep
ADD_IP_ALIASES=Yes
ADD_SNAT_ALIASES=No
RETAIN_ALIASES=No
TC_ENABLED=Internal
CLEAR_TC=Yes
MARK_IN_FORWARD_CHAIN=No
CLAMPMSS=No
ROUTE_FILTER=Yes
DETECT_DNAT_IPADDRS=No
MUTEX_TIMEOUT=60
ADMINISABSENTMINDED=Yes
BLACKLISTNEWONLY=Yes
DELAYBLACKLISTLOAD=No
MODULE_SUFFIX=
DISA...
2009 Jun 27
1
Transparent Proxy Problem with Squid3 and Shorewall
...ST_LOG_LEVEL=info
TCP_FLAGS_LOG_LEVEL=info
RFC1918_LOG_LEVEL=info
SMURF_LOG_LEVEL=info
LOG_MARTIANS=No
IPTABLES=
PATH=/sbin:/bin:/usr/sbin:/usr/bin:/usr/local/bin:/usr/local/sbin
SHOREWALL_SHELL=/bin/sh
SUBSYSLOCK=""
MODULESDIR=
CONFIG_PATH=/etc/shorewall:/usr/share/shorewall
RESTOREFILE=
IPSECFILE=zones
LOCKFILE=
DROP_DEFAULT="Drop"
REJECT_DEFAULT="Reject"
ACCEPT_DEFAULT="none"
QUEUE_DEFAULT="none"
NFQUEUE_DEFAULT="none"
RSH_COMMAND=''ssh ${root}@${system} ${command}''
RCP_COMMAND=''scp ${files} ${root}@${system}:${des...
2013 Jun 13
3
"Multiple Internet Connections" with four interfaces
Hi,
I was reading document http://shorewall.net/MultiISP.html#idp3634200.
Inspired by the document I was trying to establish the following changes:
* one additional interface: COMA_IF
* COM[A,B,C]_IF interfaces request IP address via DHCP
* all non-RFC 1918 destined trafic is NATed from INT_IF to COMA_IF
* all non-RFC 1918 destined trafic from GW is routed via COMB_IF by default
* non-RFC 1918
2013 Sep 10
6
lsm configuration issues...
...2"
TRACK_PROVIDERS=No
USE_DEFAULT_RT=No
USE_PHYSICAL_NAMES=No
ZONE2ZONE=2
BLACKLIST_DISPOSITION=DROP
MACLIST_DISPOSITION=REJECT
RELATED_DISPOSITION=ACCEPT
SMURF_DISPOSITION=DROP
SFILTER_DISPOSITION=DROP
TCP_FLAGS_DISPOSITION=DROP
TC_BITS=
PROVIDER_BITS=
PROVIDER_OFFSET=
MASK_BITS=
ZONE_BITS=0
IPSECFILE=zones
----------------------------------------------------------------------
/etc/shorewall/interfaces
----------------------------------------------------------------------
sdsl eth1 dhcp,tcpflags,routefilter,nosmurfs,logmartians,optional
free eth2 dhcp,tcpflags,routefilter,nosmurfs,logm...