Tom, First of all: thanks for your swift reply earlier. I tried uploading the real dumpfile some time ago, but forgot to zip it. After a some time away from the office I now try again. I think I changed my config files according to http://www.shorewall.net/IPSEC-2.6.html, but still nothing. I checked and double-checked my racoon.conf and setkey.conf files, but maybe by now I have changed these files so often I'm overlooking a crucial detail? This time I did create the shorewall dump file (attached) and took some time analyzing it. In the 10th line of the Conntrack Table there seems to be some sort of communication between my firewall's external IP and an internal IP at the remote site (vpn21) which is [UNREPLIED]. Does this mean traffic is going into the tunnel to the remote site, but does not return? TIA, Wouter
shorewall.dump.gz
Description: Binary data
------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/
_______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
