Re: [Efw-user] Xen support for 2.4

Wed, 09 Jun 2010 10:27:31 -0700 

Hi Massimo,

mdenadal wrote:
> 
> Nope, I'm adding the missing modules right now (and upgrading kernel to 
> 2.6.29-xs5.5.0.17).
> After that if you want to try the virtual appliance I can send you a
> private link.
> 
> But, anybody knows if it's legit to distribute an Endian based virtual
> appliance ?
> 
> Massimo.
> 
> p.s.
> Anyway Endian 2.4 seems very buggy to me. Maybe I'll build a 2.3.1 virtual
> appliance too.
> 

so you're using not the EFW Kernel? What are the sources you're using for
compiling the missing Modules for openswan/IPSEC?
I switched from IPSEC to openssl, but ipsec is working with kernel-standard
if you insert following rule's e.g. in /etc/rc.local (EFW 2.3):

        for type in 8 30; do
            iptables -I INPUTFW -j ALLOW -p icmp -i eth3 --icmp-type $type
--match policy --dir in --pol ipsec
            #iptables -I INPUTFW -j ALLOW -p icmp -i eth3 --icmp-type $type
--match policy --dir out --pol ipsec
        done
        for port in 8080 8110 2121; do
            iptables -I INPUTFW -j ALLOW -p tcp -i eth3 --dport $port -m
policy --dir in --pol ipsec
            #iptables -I INPUTFW -j ALLOW -p tcp -i eth3 --dport $port -m
policy --dir out --pol ipsec
        done
        for port in 53 67 123; do
            iptables -I INPUTFW -j ALLOW -p udp -i eth3 --dport $port -m
policy --dir in --pol ipsec
            iptables -I INPUTFW -j ALLOW -p tcp -i eth3 --dport $port -m
policy --dir in --pol ipsec
        done


BTW, do you think, EFW 2.3.1 Community is less buggy than 2.4? Some users
remain at EFW 2.2 because of lot's of bugs in Community Versions with
missing bugfixes in Community Versions in the past... :-(
 
BR neobiker
-- 
View this message in context: 
http://old.nabble.com/Xen-support-for-2.3-tp26556692p28833312.html
Sent from the efw-user mailing list archive at Nabble.com.


------------------------------------------------------------------------------
ThinkGeek and WIRED's GeekDad team up for the Ultimate 
GeekDad Father's Day Giveaway. ONE MASSIVE PRIZE to the 
lucky parental unit.  See the prize list and enter to win: 
http://p.sf.net/sfu/thinkgeek-promo
_______________________________________________
Efw-user mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/efw-user

Reply via email to