Changes

Jump to navigation Jump to search

Libreswan (view source)

Revision as of 16:36, 7 October 2014

126 bytes added ,  16:36, 7 October 2014
m
make dir first
Line 34: Line 34:     
We need a new template fragment to allow ipsec through the firewall
 
We need a new template fragment to allow ipsec through the firewall
 
+
mkdir -p /etc/e-smith/templates-custom/etc/rc.d/init.d/masq
 
  nano -w /etc/e-smith/templates-custom/etc/rc.d/init.d/masq/15AllowIPsec
 
  nano -w /etc/e-smith/templates-custom/etc/rc.d/init.d/masq/15AllowIPsec
   Line 79: Line 79:     
To disable redirects (port forwarding) within the IPsec tnnels, we have to create a custom template that will disable these at boot time. To create the custom template execute the following commands as root (simplefied):
 
To disable redirects (port forwarding) within the IPsec tnnels, we have to create a custom template that will disable these at boot time. To create the custom template execute the following commands as root (simplefied):
 +
mkdir -p /etc/e-smith/templates/templates-custom/etc/sysctl.conf
 
  nano -w /etc/e-smith/templates/templates-custom/etc/sysctl.conf/net.ipv4.ip_deny_redirects
 
  nano -w /etc/e-smith/templates/templates-custom/etc/sysctl.conf/net.ipv4.ip_deny_redirects
 
Then copy the below contents so you can paste them into the above custom template:
 
Then copy the below contents so you can paste them into the above custom template:
Retrieved from "https://wiki.koozali.org/Special:MobileDiff/25408"

Navigation menu