Michael, Remember if IPsec NAT traversal is enabled, UDP 4500 is used.
4500/udp - NAT traversal Lonnie > On Aug 23, 2020, at 5:20 PM, Michael Knill > <michael.kn...@ipcsolutions.com.au> wrote: > > Hi Group > > I don't think I'm doing this correctly and its not working. And yes I realise > that Astlinux can terminate IPsec but this is easier (if it works) as the > device is already configured. > Here is what I am doing: > NAT EXT->DMZ UDP 0/0 500 Dest: 192.168.200.2 > Pass EXT->DMZ ESP 0/0 Dest: 192.168.200.2 > Pass EXT->DMZ AH 0/0 Dest: 192.168.200.2 > Default Policy for DMZ to EXT: Pass DMZ->EXT > > Thanks so much. > > Regards > Michael Knill > _______________________________________________ > Astlinux-users mailing list > Astlinux-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/astlinux-users > > Donations to support AstLinux are graciously accepted via PayPal to > pay...@krisk.org. _______________________________________________ Astlinux-users mailing list Astlinux-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/astlinux-users Donations to support AstLinux are graciously accepted via PayPal to pay...@krisk.org.
