Or if there's a way to modify the scripts that add local networks to reload freeswan.
Maybe we can incorporate some of the Samba 2.2.2 pieces together to give us a single Windows domain on the wide area network with PDC/BDC functionality.....with our free time that is :-} ----- Original Message ----- From: "Darrell May" <[EMAIL PROTECTED]> To: "Steve Bush" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>; "e-smith-devinfo" <[EMAIL PROTECTED]> Sent: Thursday, November 08, 2001 6:40 PM Subject: Re: [e-smith-devinfo] freeswan howto + rpm for SME5/SME5.1a > > Steve Bush <[EMAIL PROTECTED]> said: > > > I finished installing freeswan on a third SME5 server tonight. > > Cool! > > > btw - The installation is a snap with your rpm Darrell... > > Excellent. > > > When you add or delete a Local network from the server-manager, all the > > ipchains rules from _updown are removed. To bring them back, you just > > need to go into the IPSEC VPN panel, choose modify on one of the VPN's > > and then modify again to reload the ipsec modules. This drops your VPN > > to all locations, then brings them all back up. Of course, if you're > > modifying a remote server's Local networks via an IPSEC VPN you lose > > your connection... > > I guess this might be best done using a single PPTP/VPN connection then. > > > All three servers are setup fully meshed so that there's only one hop > > to any given network. This will obviously make for a fairly > > complicated network once it grows. > > Yes, but I think in later releases we can make this easier by > incorporating the necessary Local network panel 'actions' into the IPSEC > VPN panel. Maybe a good December project.... > > Regards, > > -- > Darrell May > DMC Netsourced.com > http://netsourced.com > http://myEZserver.com > > -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
