--On Saturday, December 28, 2002 05:16:16 PM +0100 m.schierle@t-online.de
wrote:
> Hi Tom,
>
> It seems I come closer to the problem:
>
> I use Mandrake MNF which uses shorewall. Because MNF does not provide
> the necessary settings in it''s webinterface, I added the folowing
rule,
> as you suggested.
>
> ACCEPT loc net 50
>
> Now I''m able to use manual-keyed vpn-connections.
> But when I add
> ACCEPT loc net udp 500 500
> Or use the predefined service isakmp from the webinterface, I''m
not able
> to ping the internet or the vpn anymore.
>
> I''m not sure if my problems are shorewall- or MNF-related. This is
my
> first contact to shorewall.
>
Well, I do _not_ provide MNF support. MNF has a two-tiered license
structure whereby you can have it for free with no support or you can pay
for a license and get support from MandrakeSoft. Given that license
structure and the fact that MandrakeSoft continues to teeter on the brink
of bankruptcy, it would be highly improper for me to provide MNF support
for free.
If you install Shorewall as described in the Shorewall documentation, you
can come to the Shorewall mailing list for support. If you run MNF, you can
pay for a Mandrake license or figure out what''s wrong yourself with the
help of the Shorewall documentation and by asking non MNF-specific
questions on the mailing list.
-Tom
--
Tom Eastep \ Shorewall - iptables made easy
Shoreline, \ http://shorewall.sf.net
Washington USA \ teastep@shorewall.net