On Mon, 19 Aug 2002, Jeff Lush wrote: > Hello all, > > I've got bering 1.0rc3 with ipsec509 up and running off a dual floppy > install, but I'm having a bit of trouble. I'm using SSH Sentinal to connect > from a win98 machine, and on the first connection, it works great; however, > any connection attempts after that fail until I reset the firewall. Auth.log > reports the following from the failed attempts: > > -- > Aug 18 12:27:09 firewall Pluto[4101]: ERROR: "roadwarrior" 207.137.114.112 > #8: sendto on eth0 to 207.137.114.112:500 failed in STATE_MAIN_R0. Errno 1: > Operation not permitted > Aug 18 12:27:14 firewall Pluto[4101]: ERROR: "roadwarrior" 207.137.114.112 > #3: sendto on eth0 to 207.137.114.112:500 failed in EVENT_RETRANSMIT. Errno > 1: Operation not permitted > -- > > I've read (from guitarlynn's docs) that using "leftfirewall=yes" in the > ipsec.conf can cause dropped tunnels to hang. Can this be what is happening > here? If so, what manual rules should be added to shorewall to support ipsec > connections? >
http://www.shorewall.net/IPSEC.htm. PLEASE folks -- at least _try_ to find this kind of thing on the Shorewall site before posting. -Topm -- Tom Eastep \ Shorewall - iptables made easy AIM: tmeastep \ http://www.shorewall.net ICQ: #60745924 \ [EMAIL PROTECTED] ------------------------------------------------------- This sf.net email is sponsored by: OSDN - Tired of that same old cell phone? Get a new here for FREE! https://www.inphonic.com/r.asp?r=sourceforge1&refcode1=vs3390 ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html