I have finally gotten the opportunity to test this out... I added these lines to the bottom /etc/shorewall/rules and I am still unable to connect to my IPsec endpoint on the other side of my Bering box. These are the only modifications from the default install of Bering.
ACCEPT net loc udp 500 ACCEPT loc net udp 500 ACCEPT net loc 50,51 all ACCEPT loc net 50,51 all Did I miss something? Put these in the wrong place? um ...? Any help would be appreciated. Thanks in advance, /Eric
