I have newly setup Freeswan with ipchains built on my new debian linux box.
Everything was working well but when I started my chain rules, I couldn't
ping the internal host on the other side of network.
These are the rules I added for IPSEC,
/sbin/ipchains -A input -p UDP -d $left-external-network 500 -j ACCEPT
/sbin/ipchains -A input -p 50 -d $left-external-network -j ACCEPT
/sbin/ipchains -A input -p 51 -d $left-external-network -j ACCEPT
# Allows internal subnet access
/sbin/ipchains -A input -b -s $left-internal-network -j ACCEPT
# Allows traffic from and to internal LANs
/sbin/ipchains -A forward -b -s $left-internal-network -d
$right-internal-network -j ACCEPT
Any suggestion for the rules?
Thanks in advance.
Alan
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
