Hi Shamus, For IPsec, if AstLinux is behind another router, that router needs to forward UDP 500, UDP 4500 and ESP (protocol 50).
Note the "Server Cert DNS Name" needs to be set to the DNS (static or dynamic) of the router doing the forwarding with the public interface. Lonnie On Apr 25, 2012, at 5:28 PM, Shamus Rask wrote: > What ports would need to be forwarded to an AstLinux box if it is behind a > firewall/NAT device? > > -- > Shamus Rask > Sent from my mobile > > On Wednesday, 25 April, 2012 at 13:04, > [email protected] wrote: > >> >> >> Message: 2 >> Date: Wed, 25 Apr 2012 10:17:11 -0500 >> From: Lonnie Abelbeck <[email protected]> >> Subject: [Astlinux-users] AstLinux 1.0.3 Preview >> To: AstLinux Users Mailing List <[email protected]> >> Message-ID: <[email protected]> >> Content-Type: text/plain; charset=us-ascii >> >> AstLinux Users, >> >> The AstLinux Team would like to offer a preview to AstLinux 1.0.3. >> >> Keep in mind this is not a release candidate, some additions/changes may >> occur before the final AstLinux 1.0.3 release. The preview changes are shown >> here... >> >> Additions for AstLinux 1.0.3: >> http://astlinux.svn.sourceforge.net/viewvc/astlinux/branches/1.0/docs/ChangeLog.txt >> >> The AstLinux Custom Build Engine is used to generate your custom preview, >> the default configurations are already built... >> >> Build AstLinux SVN Image: >> http://build.astlinux.org/admin/build.php?version=svn >> >> One particularly compelling new feature is support for IPsec + XAuth with >> certificates, providing more interoperability to various mobile VPN clients. >> In particular for Apple's iOS devices. >> >> IPsec VPN for Apple iOS >> http://doc.astlinux.org/userdoc:tt_ipsec_vpn_apple_ios >> >> We have tested this extensively with iOS 5.1 clients, but welcome reports >> from other mobile devices, Android, etc.. . The above documentation should >> apply, in the general sense, to most any mobile device that supports IPsec + >> XAuth with certificates. >> >> All feedback is appreciated. >> >> AstLinux Team > > ------------------------------------------------------------------------------ > Live Security Virtual Conference > Exclusive live event will cover all the ways today's security and > threat landscape has changed and how IT managers can respond. Discussions > will include endpoint security, mobile security and the latest in malware > threats. > http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/_______________________________________________ > Astlinux-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/astlinux-users > > Donations to support AstLinux are graciously accepted via PayPal to > [email protected]. ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ _______________________________________________ Astlinux-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/astlinux-users Donations to support AstLinux are graciously accepted via PayPal to [email protected].
