Hello all,
I''m not totally new here, but I have a new email address now.
I try to build a new IPSec/firewall gateway (I already have several
running in the combination of Linux kernel 2.6, racoon and shorewall)
according to this little guide:
http://lists.shorewall.net/pipermail/shorewall-users/2005-May/018358.html
Before patching the kernel with patch-o-matic-ng-20060218 I downloaded
iptables-1.3.1 and did:
export IPTABLES_DIR=/usr/src/iptables-1.3.1
Then I compiled the kernel 2.6.11 (in this version the patching went
without problems).
So far everything seems ok, but the iptables in Debian Sarge is v1.2.11.
Can I use this version or do I have to get/compile
iptables-1.3.1?
''iptables -m policy --help'' works.
''iptables -N foo -m policy --pol none'' gives:
''iptables v1.2.11: policy match: neither --in nor --out
specified''
That is the same output as on my working older IPSec gateways. But these
have stability issues (especially the one in the center) and I try to
update them.
Kay
-------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc. Do you grep through log files
for problems? Stop! Download the new AJAX search engine that makes
searching your log files as easy as surfing the web. DOWNLOAD SPLUNK!
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=103432&bid=230486&dat=121642