Pantek Library
Hosting Provided By
CybrHost
High Speed Hosting
Mailing Lists: lists.freeswan.org > users > 03 > 052381.html (Request Expert lists.freeswan.org Support)

Re: [Users] VPN Firewallrules

From: John A. Sullivan III <john.sullivan(at)nexusmgmt.com>
Date: Fri May 09 2003 - 10:22:26 EDT

        You can find some training documents for using iptables and FreeS/WAN together on http://iscs.sourceforge.net.

        In short, if you merely want allow the IPSec traffic to pass through iptables to FreeS/WAN, you simply allow the IPSec traffic (-p 50 and -p 51) and the IKE traffic (-p 17 --dport 500) on the INPUT and OUTPUT chains.

        You can implement access control on the traffic in the tunnel by creating iptables rules to act on the ipsec interfaces on the INPUT, OUTPUT and FORWARD chains.

On Fri, 2003-05-09 at 06:08, MarLip wrote:
> Hi @ll 

-- 
John A. Sullivan III
Chief Technology Officer
Nexus Management
+1 207-985-7880
john.sullivan@nexusmgmt.com
---
If you are interested in helping to develop a GPL enterprise class
VPN/Firewall/Security device management console, please visit
http://iscs.sourceforge.net 

_______________________________________________
Users mailing list
Users@lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users
Received on Fri May 9 11:03:43 2003

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 13:01:31 EDT

Contact Us  Legal Notices  Order Services Online 
Pantek Home  Privacy Policy  IT news  Site Map  Pantek Library