Good morning!! Which files have to configure an IPSec tunnel that can be established? What documents can I follow the example? thank you ------------------------------------------------------------------------------ RSA(R) Conference 2012 Save $700 by Nov 18 Register now http://p.sf.net/sfu/rsa-sfdev2dev1
On Mon, 14 Nov 2011 08:21:16 -0200 Orlandinei Vujanski <orlandinei@gmail.com> wrote:> Good morning!! > Which files have to configure an IPSec tunnel that can be > established? What documents can I follow the example?Here is documentation for ipsec configuration on shorewall so your IPsec service like openswan, strongSwan, or ipsec-tools can establish the tunnel. http://www.shorewall.net/IPSEC-2.6.html -- Tuomo Soini <tis@foobar.fi> Foobar Linux services +358 40 5240030 Foobar Oy <http://foobar.fi/> ------------------------------------------------------------------------------ RSA(R) Conference 2012 Save $700 by Nov 18 Register now http://p.sf.net/sfu/rsa-sfdev2dev1
Perfect, I installed the 8 networks, two networks of the connection is established, the packet reaches the destination but no return of the package, it could be? Shorewall updated and without routes on the server -----Mensagem original----- De: Tuomo Soini [mailto:tis@foobar.fi] Enviada em: segunda-feira, 14 de novembro de 2011 09:37 Para: shorewall-users@lists.sourceforge.net Assunto: Re: [Shorewall-users] IPSEC - Please On Mon, 14 Nov 2011 08:21:16 -0200 Orlandinei Vujanski <orlandinei@gmail.com> wrote:> Good morning!! > Which files have to configure an IPSec tunnel that can be > established? What documents can I follow the example?Here is documentation for ipsec configuration on shorewall so your IPsec service like openswan, strongSwan, or ipsec-tools can establish the tunnel. http://www.shorewall.net/IPSEC-2.6.html -- Tuomo Soini <tis@foobar.fi> Foobar Linux services +358 40 5240030 Foobar Oy <http://foobar.fi/> ---------------------------------------------------------------------------- -- RSA(R) Conference 2012 Save $700 by Nov 18 Register now http://p.sf.net/sfu/rsa-sfdev2dev1 _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users ------------------------------------------------------------------------------ RSA(R) Conference 2012 Save $700 by Nov 18 Register now http://p.sf.net/sfu/rsa-sfdev2dev1
On Nov 15, 2011, at 3:43 PM, Orlandinei Vujanski wrote:> Perfect, I installed the 8 networks, two networks of the connection is > established, the packet reaches the destination but no return of the > package, it could be? > > Shorewall updated and without routes on the serverMy advice concerning IPSEC is always to disable Shorewall (shorewall clear) until you get IPSEC working correctly. Then re-enable Shorewall (shorewall start); if IPSEC stops working, *then* come to us for advice. -Tom Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ RSA(R) Conference 2012 Save $700 by Nov 18 Register now http://p.sf.net/sfu/rsa-sfdev2dev1
Tom, good morning! Most of my network has a dedicated link with valid IP address on the network interface directly. And when the ADSL networks with the network to make IPSEC work? thank you 2011/11/15 Tom Eastep <teastep@shorewall.net>> > On Nov 15, 2011, at 3:43 PM, Orlandinei Vujanski wrote: > > > Perfect, I installed the 8 networks, two networks of the connection is > > established, the packet reaches the destination but no return of the > > package, it could be? > > > > Shorewall updated and without routes on the server > > > My advice concerning IPSEC is always to disable Shorewall (shorewall > clear) until you get IPSEC working correctly. Then re-enable Shorewall > (shorewall start); if IPSEC stops working, *then* come to us for advice. > > -Tom > > Tom Eastep \ When I die, I want to go like my Grandfather who > Shoreline, \ died peacefully in his sleep. Not screaming like > Washington, USA \ all of the passengers in his car > http://shorewall.net \________________________________________________ > > > > > > ------------------------------------------------------------------------------ > RSA(R) Conference 2012 > Save $700 by Nov 18 > Register now > http://p.sf.net/sfu/rsa-sfdev2dev1 > _______________________________________________ > Shorewall-users mailing list > Shorewall-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/shorewall-users >------------------------------------------------------------------------------ RSA(R) Conference 2012 Save $700 by Nov 18 Register now http://p.sf.net/sfu/rsa-sfdev2dev1
On Wed, 2011-11-16 at 09:50 -0200, Orlandinei Vujanski wrote:> Most of my network has a dedicated link with valid IP address on the > network interface directly. > And when the ADSL networks with the network to make IPSEC work?I''m sorry -- I do not understand your question. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ RSA(R) Conference 2012 Save $700 by Nov 18 Register now http://p.sf.net/sfu/rsa-sfdev2dev1