[Shorewall-users] special l2tp tunnel rules

drwho drwho at f34r.com
Wed Dec 17 21:12:56 PST 2003


As discussed on

http://www.jacco2.dds.nl/networking/freeswan-l2tp.html

 To allow for lt2p / freeswan / and the MS Vpn client it is necessary
to setup l2tp and it is prefered to run it on an internal interface.

 I have done this in start and stop files of shorewall but i was
not sure if maybe this could be accomplised better elsewhere (tunnels,other?)

qt /sbin/iptables -t nat --append PREROUTING -i ipsec0 -p udp --sport 1701 --dport 1701 -j DNAT -
-to-destination 192.168.1.98



--
Regards
  Sean M.

struct SoftwareProfessional {
   double salary;
   long   lunches;
   float  jobs;
   char   unstable;
   void   work;
   short  tempers;
};
--


More information about the Shorewall-users mailing list