Hi all, Found EFW today, installed it tonight, love it now!!
A problem though, I can't get IPSec pass-thru to work. One of my internal clients in the green zone needs to create a road-warrior connection to an external server (via red zone). I found a previous post (ID: 37545118) regarding "IPSec pass-thru fix or workaround???" and I've allowed GRE and ESP protocols for all green clients to all destinations but still won't work. I've tried disabling outgoing firewall all together to no avail. I can connect perfectly if I connect my client directly to my router and bypass EFW. The firewall logs show a FORWARD on interface br0, protocol UDP, source my client, port 500, destination my remote ipsec server. My conclusion is that the outgoing packets are being routed correctly, but the EXISTING/RELATED type replies aren't being forwarded from the remote back in to the client properly - ie, being blocked by the incoming firewall. How can I get around this? (or please correct me if I'm wrong :D) Cheers, -p ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Efw-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/efw-user
