[Gllug] IPSec and firewalls
Jonathan Dye
jonathan.dye at automationpartnership.com
Fri Mar 8 14:17:35 UTC 2002
At 15:14 08/03/02 +0000, you wrote:
>On Fri, Mar 08, 2002 at 12:11:30PM +0100, Jonathan Dye wrote:
>> This is all theory for now but I'm looking into all this stuff.
>>
>> I want to set up a wireless network at home. My home network is currently
>> like this:
>>
>> INTERNET <--> 10.12.34.1 <--> 10.12.34.*
>>
>> and I want to have a wireless network in 10.12.35.* with IPSec between the
>> wireless machines and the gateway.
>>
>> SO
>>
>> INTERNET <--> 10.12.34.1 <--> 10.12.34.*
>> 10.12.35.1
>> ^
>> |
>> \--> 10.12.35.*
>>
>> So, IPSec between 10.12.35.1 and 10.12.35.* but I don't want the wireless
>> machines to access 10.12.35.1 without going through IPSec. Is it possible
>> to firewall this access off on the router or is that going to stop IPSec?
>> If I just firewall off tcp and udp will IPSec still get though?
>
>it should, because IPSec has a different protocol number...
I thought it'd be something like that so I guess I could filter everything
where the protocol number is not IPSec or would this extra step break stuff
(like ICMP messages).
JD
_____________________________________________________________________
This message has been checked for all known viruses by the
MessageLabs Virus Scanning Service
--
Gllug mailing list - Gllug at linux.co.uk
http://list.ftech.net/mailman/listinfo/gllug
More information about the GLLUG
mailing list