On Tue, 2003-09-30 at 10:40, Erich Titl wrote: > Hi > > Has anyone successfully set up an IPSec tunnel with 2 dynamic endpoints. > Would you mind to share the shorewall and up/down scripts. > I seem to have a problem setting it up because > > 1) shorewall needs to be up to get the IP address of the remote gateway > .... and > 2) shorewall needs the address of the remote gateway to start. > > I am afraid to have routestopped in my external interface description. >
Why don't you just specify the remote gateway as 0.0.0.0/0 (or to a smaller network if you know that the remote gateway address must be within that smaller network). -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ [EMAIL PROTECTED] ------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
