Readd ipsec sourcenat to allow access to ipsec nets from ipfire.

This commit is contained in:
Arne Fitzenreiter
2010-05-12 12:55:14 +02:00
parent 618097cb60
commit c4cd0f7b95
2 changed files with 27 additions and 15 deletions

View File

@@ -176,8 +176,8 @@ case "$1" in
/sbin/iptables -A FORWARD -j IPSECFORWARD
/sbin/iptables -A FORWARD -j OPENSSLVIRTUAL -m comment --comment "OPENSSLVIRTUAL FORWARD"
/sbin/iptables -A OUTPUT -j IPSECOUTPUT
#/sbin/iptables -t nat -N IPSECNAT
#/sbin/iptables -t nat -A POSTROUTING -j IPSECNAT
/sbin/iptables -t nat -N IPSECNAT
/sbin/iptables -t nat -A POSTROUTING -j IPSECNAT
# Outgoing Firewall
/sbin/iptables -A FORWARD -j OUTGOINGFW