Darrell May <[EMAIL PROTECTED]> said:
> If I can guess I think you are finding that the default _updown file
> from the freeswan rpm probably changed from the freeswan release Andy
> used previously.
Confirmed, in Andy's freeswan-1.8-3.src.rpm he incorporates the following
patch listed in the
Steve Bush <[EMAIL PROTECTED]> said:
> Is there any way you can send me the _updown file from your rpm.
> If not, I will build a 4.1.2 server and expand it on there.
Steve, FYI the _only_ change I made to Andy's rpm was fixing the
incorrect path's in his ipsec.secrets templates. Everything el
s for your help
- Original Message -
From: "Andy Worthington" <[EMAIL PROTECTED]>
To: "Steve Bush" <[EMAIL PROTECTED]>; "Hugh Fox" <[EMAIL PROTECTED]>;
Sent: Thursday, October 25, 2001 2:44 PM
Subject: Re: [e-smith-devinfo] FreeS/WAN Testing Update - Li
OTECTED]>;
<[EMAIL PROTECTED]>
Sent: Thursday, October 25, 2001 12:48 PM
Subject: Re: [e-smith-devinfo] FreeS/WAN Testing Update - Limited Success
> I spoke too soon...
> As long as all you need is to ping site to site, this is your solution!!!
> I can't telnet, browse wi
FYI -
I'm using SME5 sp2 with Darrell's RPM at:
http://myezserver.com/docs/mitel/freeswan-howto.html
The changes I noted were done to the Freeswan installed by Mitel on SME5
I believe the problem with this configuration is the _updown included with
SME5
is the standard one included with Freeswan
IL PROTECTED]>; "Hugh Fox"
<[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>
Sent: Thursday, October 25, 2001 12:37 PM
Subject: Re: [e-smith-devinfo] FreeS/WAN Testing Update - Limited Success
> Okay I have it working correctly now.
> I can ping from internal net to internal ne
Okay I have it working correctly now.
I can ping from internal net to internal net.
fyi - for the following changes to take effect, I simply went into the
existing tunnel and resaved the configs.
I backed out the following changes that I had previously made:
> In 30Connections
> put a hash in
orthington
- Original Message -
From: "Steve Bush" <[EMAIL PROTECTED]>
To: "Andy Worthington" <[EMAIL PROTECTED]>; "Hugh Fox"
<[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>
Sent: Thursday, October 25, 2001 11:58 AM
Subject: Re: [e-smith-devinfo] FreeS/WAN
script included with freeswan
> use
> > ipfwadm.
> > There is a sample ipchains script that can be called instead.
> >
> >
> > - Original Message -
> > From: "Andy Worthington" <[EMAIL PROTECTED]>
> > To: "Hugh Fox
ngton
- Original Message -
From: "Steve Bush" <[EMAIL PROTECTED]>
To: "Andy Worthington" <[EMAIL PROTECTED]>; "Hugh Fox"
<[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>
Sent: Thursday, October 25, 2001 11:33 AM
Subject: Re: [e-smith-devinfo] F
uot;Hugh Fox" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>
Sent: Thursday, October 25, 2001 11:04 AM
Subject: Re: [e-smith-devinfo] FreeS/WAN Testing Update - Limited Success
> Did that fix the errors you were getting in your log file?
>
> Andy Worthington
> - Original
Did that fix the errors you were getting in your log file?
Andy Worthington
- Original Message -
From: "Hugh Fox" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Thursday, October 25, 2001 8:30 AM
Subject: [e-smith-devinfo] FreeS/WAN Testing Update - Limited Su
Based on the feedback earlier today regarding problems with ipchains, etc, I
made some amendments to some ipsec.conf templates:
In /etc/e-smith/templates/etc/ipsec.conf
In 30Connections
put a hash in front of every line similar to this
$result .= "\trightfirewall=$remoteNAT\n
13 matches
Mail list logo