Charles Steinkuehler wrote: > > This could be caused by routing issues, firewall issues (make sure you're > allowing protocols 50/51 as well as UDP port 500, which sets up the SA), > configuration issues (it can be tricky to understand how IPSec interacts > with standard routing on linux). >
And NAT traversal also typically uses UDP port 4500. The UDP 500 and protocol 50/51 packets are encapsulated inside UDP packets with destination port 4500. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ [EMAIL PROTECTED] PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
signature.asc
Description: OpenPGP digital signature
