can't ping

[Alan Chung <alan@silveregg.co.jp>]

I have newly setup Freeswan with ipchains built on my new debian linux box.
Everything was working well but when I started my chain rules, I couldn't 
ping the internal host on the other side of network.

These are the rules I added for IPSEC,

/sbin/ipchains -A input -p UDP -d $left-external-network 500 -j ACCEPT
/sbin/ipchains -A input -p 50 -d  $left-external-network -j ACCEPT
/sbin/ipchains -A input -p 51 -d $left-external-network -j ACCEPT

# Allows internal subnet access
/sbin/ipchains -A input -b -s  $left-internal-network -j ACCEPT

# Allows traffic from and to internal LANs
/sbin/ipchains -A forward -b -s $left-internal-network -d 
$right-internal-network -j ACCEPT

Any suggestion for the rules?

Thanks in advance.

Alan

---

Follow-Ups:

• Re: can't ping
• From: Henry Spencer <henry@spsystems.net>

---

• Prev by Date: IPSec diagnostics/audit tool
• Next by Date: Re: can't ping
• Prev by thread: IPSec diagnostics/audit tool
• Next by thread: Re: can't ping
• Index(es):
  • Main
  • Thread