I have an IPSec gateway (Linux machine with SuperFreeS/WAN 1.99.8): - eth0: LAN - eth1: DMZ and WLAN - eth2: WAN (internet uplink) - ppp0-ppp4: modems for travelling salesmen
IPSec connections (using SSH Sentinel, too many problems with win2k/xp IPSec) over eth2 and eth1 work absolutely perfectly. I am having real troubles getting the dialup people working though. Since I cannot guarantee that ppp0 will be up when IPSec starts I can't say "ipsec3=ppp0" and so on -- FreeS/WAN falls down because the interfaces can't get an IP. I tried having the people who dial up just use our WAN IP (and DMZ, and LAN even!) but even though the IPSec connection goes up, no traffic flows. I have made sure that rp_filter is off and that the firewall is not blocking. I think the real problem is that data coming in ppp0 destined for the WAN IP is ignored by FreeS/WAN since it isn't actually coming IN on eth2. I tried goofing around with dummy interfaces and IP aliases but I have not been able to get this to work.. Can anyone suggest any solutions? Regards, Andrew _______________________________________________ FreeS/WAN Users mailing list [EMAIL PROTECTED] https://mj2.freeswan.org/cgi-bin/mj_wwwusr
