[strongSwan] Host services access

Vukovics Mihály vm at informatik.hu
Tue Sep 6 14:26:03 CEST 2016


Hello, 

and one more thing. Strongswan is installed under /usr/local, the
resolver alters the /usr/local/etc/resolv.conf, which is not used. 

If I set the location of resolve.file to /etc/resolv.conf, the log shows
that is has been updated, but there are no changes in the file.

Thanks, 
Vuki 

On 2016-09-06 13:56, Vukovics Mihály wrote:

> Hello, 
> 
> I set up a net-to-net IPSEC configuration according to 
> 
> https://www.strongswan.org/testing/testresults/ikev2/config-payload/ 
> 
> My issue is that all the services are accessible from the client (carol) in the 10.1.0.0/24 network, but not all the services are accessible on gateways (moon) internal IP address (10.1.0.1). 
> 
> E.g. HTTP, HTTPS, SMB protocols working, but DNS, SSH (tcp 22334) are not, even with ACCEPT policy on INPUT and FORWARD chains. 
> 
> Do you have any idea where/how to debug the issue? 
> 
> Thanks,
> Vuki
 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20160906/ae82ad7b/attachment.html>


More information about the Users mailing list