Mailinglist Archive: opensuse-security (160 mails)
| < Previous | Next > |
Re: [suse-security] Routing IPSec through SuSEFirewall2
- From: Andreas Bock <Andreas.Bock@xxxxxxxx>
- Date: Thu, 02 Dec 2004 12:17:23 +0100
- Message-id: <41AEF9C3.3070203@xxxxxxxx>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Oliver Stettner schrieb:
| Is there anything special I have to configure in
| /etc/sysconfig/SuSEFirewall2? My first tests dind't succeed. If
necessary
| I can post my /etc/sysconfig/SuSEFirewall2 here.
Hi Oliver,
you don't have to configuer anything special.
But you have to ensure that your connection partner does not send
IP-Packets with the "do not fragment" IP header set when connecting
your lan with DSL to the Internet.
I had the problem that I could establish the tunnel but no date
packets received my Firewall.
Only an upgrage of the VPN-Server solved that problem.
Regards
Andreas
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFBrvnD6D/0LWcEi7QRApL8AJ4uBBkb0wPmiKu9IoM8bHb0PX01mQCfZtKw
Zjb8fKueVB9k4ZakTX3XIdE=
=dgQQ
-----END PGP SIGNATURE-----
Hash: SHA1
Oliver Stettner schrieb:
| Is there anything special I have to configure in
| /etc/sysconfig/SuSEFirewall2? My first tests dind't succeed. If
necessary
| I can post my /etc/sysconfig/SuSEFirewall2 here.
Hi Oliver,
you don't have to configuer anything special.
But you have to ensure that your connection partner does not send
IP-Packets with the "do not fragment" IP header set when connecting
your lan with DSL to the Internet.
I had the problem that I could establish the tunnel but no date
packets received my Firewall.
Only an upgrage of the VPN-Server solved that problem.
Regards
Andreas
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFBrvnD6D/0LWcEi7QRApL8AJ4uBBkb0wPmiKu9IoM8bHb0PX01mQCfZtKw
Zjb8fKueVB9k4ZakTX3XIdE=
=dgQQ
-----END PGP SIGNATURE-----
| < Previous | Next > |