[EMAIL PROTECTED]:/home/florin>grep 50 /etc/protocols ipv6-crypt 50 IPv6-Crypt # Encryption Header for IPv6
On Thu, 17 Mar 2005 11:36:30 -0500 (EST), David Jones <[EMAIL PROTECTED]> wrote: > Yes, I'm aware of that. However, in the web interface, when I add a > custom rule and click the drop down box for protocol, I don't see it in > there, either as ESP or 50. I didn't know if it was named something > different in the interface? you can also enter the port number by hand ... if you don't know what is the name of the protocol (the right entry in the /etc/protocols file sthat is) my 2cts, -- Florin > > > the esp protocol is the protocol number 50. see RFC 2406 > > > > On Tue, 15 Mar 2005 17:02:43 -0500 (EST), David Jones > > <[EMAIL PROTECTED]> wrote: > >> Florin, > >> > >> I needed to be able to add a DNAT rule on MNF 2 to allow a vpn > >> connection through the box to a vpn endpoint behind it. I couldn't > >> find "esp" in the protocol type. I ended up manually adding a rule to > >> /etc/shorewall/rules like this: > >> DNAT wan lan:192.168.15.5 esp - - - > >> > >> Works fine. However, if I add or modify any existing rules and apply > >> them, this gets wiped out and I have to redo it. > >> > >> How can I add them via the interface? Also, where is the information > >> for those drop down lists stored? For example, the protocol types, > >> the rule types, etc? > >> > >> Thanks for your help, > >> > >> David > >> > >> > >> ____________________________________________________ > >> Want to buy your Pack or Services from MandrakeSoft? > >> Go to http://www.mandrakestore.com > >> Join the Club : http://www.mandrakeclub.com > >> ____________________________________________________ > >> > >> > >> > > > > > > -- > > Florin > > -- Florin
____________________________________________________ Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com ____________________________________________________
