Package: shorewall Version: 2.2.3-1 Severity: normal
I am having ip_nat_ftp problems using Openswan with Shorewall under a 2.6.8 kernel. I am currently using the www.shorewall.net/ipsec.htm settings for a 2.6.8 or 2.4.27 kernel (I have tried them both since the ipsec tools were backported to 2.4.27). >From Tom Eastep's email, apparently NAT is not likely to work under this configuration. http://lists.shorewall.net/pipermail/shorewall-users/2005-May/018245.html I have attempted to use the www.shorewall.net/ipsec-2.6.html settings but have found that the kernel is missing netfilter's 'policy match'. The iptables apparently is compatible. I'm looking for either a patch to apply to the kernel or a way to get NAT to work without the SPD stuff. The instructions that I have found here, don't seem to work. http://lists.shorewall.net/pipermail/shorewall-users/2005-May/018358.html I hope I am submitting this to the right location. Jeff Rasmussen -- System Information: Debian Release: 3.1 Architecture: i386 (i686) Kernel: Linux 2.6.8-2-686 Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Versions of packages shorewall depends on: ii debconf 1.4.30.13 Debian configuration management sy ii iproute 20041019-3 Professional tools to control the ii iptables 1.2.11-10 Linux kernel 2.4+ iptables adminis -- debconf information: * shorewall/upgrade_20_22: true * shorewall/upgrade_14_20: false * shorewall/upgrade_to_14: false * shorewall/dont_restart: -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
