hello,
my setup is rh8 2.4.20-8, shorewall 2.0.7, freeswan-2.04.
------- policy-------
vpn loc accept
loc vpn accept
vpn fw accept
fw vpn accept
---------------------
--------zone -------
net net
loc local
dmz dmz
vpn vpn
------------------------
----- tunnels ---------
ipsec net 0.0.0.0/0 vpn
ipsecnat net 0.0.0.0/0 vpn
--------------------------------------
------ interfaces ------------
net eth0
loc eth1
dmz eth2
vpn ipsec0
---------------------------------
------ masq --------------
eth0 eth1
-------------------------------
freeswan is installed on the same box as shorewall. looking at /var/log/secure
"isakmp sa established" im able to establish a connectiong, when i
ping the local network from from remote, i would get "negotiating ip
security" then a ping reply, but right after the ping reply it will
"timed out". i know this was working previously but all of a sudden
it will not communicate anymore. looking at ipsec verify, i get a "kill
tunnel" on 0.0.0.0/0. i think the problem started when i upgraded
shorewall from v2.01 to current stable release. I have been duplicate same
problem with rh9 2.4-20-31, the same exact problem. i dont know if it just my
routing or not. pls help. thanks
joshua
