Hi Simon, I recently got my IPSec tunnel up and running using Bering 1.1. I had a few problems as well, but they were due to my not COMPLETELY following the instructions that Tom wrote. I made a couple of assumptions about the ipsec.conf file and my tunnel didn't work until I went back and read the docs again. I did not have to create any additional rule sets in Shorewall. The documents at http://shorewall.net/IPSEC.htm and http://jixen.tripod.com were extremely helpful and got the whole thing up and running once I followed the instructions to the letter. :-)
My set up is a LAN-to-LAN tunnel using RSA keys. HTH -- Ken > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of > Simon Chalk > Sent: Thursday, April 03, 2003 6:08 AM > To: [EMAIL PROTECTED] > Subject: [leaf-user] Bering Ipsec and Shorewall rules > > > Please can someone confirm whether the Shorewall Tunnels file > internally manages the UDP Port 500 and Protocols 50 and 51? > > Or do I need to create rules? > > I have created the tunnel files as per documentation on the > Bering site and Shorewall. But I am currently unable to get > ipsec working between two firewalls. I am assuming at this > point that something is blocking the path. > > Regards, > > Simon. > > > > > ------------------------------------------------------- > This SF.net email is sponsored by: ValueWeb: > Dedicated Hosting for just $79/mo with 500 GB of bandwidth! > No other company gives more support or power for your > dedicated server > http://click.atdmt.com/AFF/go/sdnxxaff00300020> aff/direct/01/ > > > -------------------------------------------------------------- > ---------- > leaf-user mailing list: [EMAIL PROTECTED] > https://lists.sourceforge.net/lists/listinfo/l> eaf-user > SR > FAQ: > http://leaf-project.org/pub/doc/docmanager/docid_1891.html > ------------------------------------------------------- This SF.net email is sponsored by: ValueWeb: Dedicated Hosting for just $79/mo with 500 GB of bandwidth! No other company gives more support or power for your dedicated server http://click.atdmt.com/AFF/go/sdnxxaff00300020aff/direct/01/ ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html