Hi, It seems I hit the same problem when trying to setup an IPSec tunnel between two routers (running Linux 2.4.18+newnat). FTP data transfer is broken. Control connection is ok. After some investigations it seems NAT doesn't recognize IPSec packets being part of the FTP connection and so they get dropped.
Sure an IPSec helper would help... Rob Amir Khandani wrote: > Hello, > > I was trying to have two VPN connection over a Linux NAT box running > iptables and realized as soon as the second connection in made it breaks the > first one. So looked for an IPSec helper module for netfilter but I was out > of luck. I am wondering if there is anyone other there that either know > about a solution to this problem or has or is working on IPSec ALG for > iptables. > > Any help or comments is very much appreciated. > > thanks > > amir > -- Roberto Romano Software Engineer LIGHTNING SA http://www.lightning.ch/
