thr3ads.net - Shorewall devel - [Shorewall-devel] Building custom _updown script for freeswan to make it talk with shorewall [Sep 2002]

If this information is useful, please help other people find it:
Share via:

Tuomo Soini

2002-Sep-21 19:23 UTC

[Shorewall-devel] Building custom _updown script for freeswan to make it talk with shorewall

I have a plan to make freeswan and shorewall talk to each other.

Shorewall doesn''t currently have proper handles to make ipsec and 
firewall work properly together and I''m planning on building a custom 
_updown script for freeswan to make it communicate with shorewall.


How can I make shorewall work properly with different road warriors with 
different dynamic ip-addresses and different accesses?

I have following plan:

have zone for every road warrior
not to have zone in hosts or interfaces
make updown script to jump to correct rules. In freeswan 
connection-descriptions give as parameter to updown script knowledge to 
which zone this connection is part of.

Have I missed anything important or is this plan possible?

-- 
Tuomo Soini <tis@foobar.fi>
http://tis.foobar.fi/

Seemingly Similar Threads

Search for more apparently analagous threads

Shorewall devel - Sep 2002 - Building custom _updown script for freeswan to make it talk with shorewall

[Shorewall-devel] Building custom _updown script for freeswan to make it talk with shorewall

Seemingly Similar Threads

Wisdom of the Ancients