Whoops just thinking about it, should it be NAT EXT->DMZ for all items. I will try.
Regards Michael Knill From: Michael Knill <michael.kn...@ipcsolutions.com.au> Reply to: AstLinux List <astlinux-users@lists.sourceforge.net> Date: Monday, 24 August 2020 at 8:36 am To: AstLinux List <astlinux-users@lists.sourceforge.net> Subject: [Astlinux-users] Forwarding IPsec traffic through Astlinux Hi Group I don't think I'm doing this correctly and its not working. And yes I realise that Astlinux can terminate IPsec but this is easier (if it works) as the device is already configured. Here is what I am doing: NAT EXT->DMZ UDP 0/0 500 Dest: 192.168.200.2 Pass EXT->DMZ ESP 0/0 Dest: 192.168.200.2 Pass EXT->DMZ AH 0/0 Dest: 192.168.200.2 Default Policy for DMZ to EXT: Pass DMZ->EXT Thanks so much. Regards Michael Knill
_______________________________________________ Astlinux-users mailing list Astlinux-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/astlinux-users Donations to support AstLinux are graciously accepted via PayPal to pay...@krisk.org.
