Patrick Schaaf wrote: > Could you possibly try newnat without ipsec, e.g. with a crossover cable > between the routers? > > > We were just willing to see if someone else encountered this problem and > > knows more about it.
For what it is worth, I run the following setup just fine client network -> FreeSWAN IPSEC gateway -> Public network -> FreeSWAN IPSEC gateway with iptables firewalling and NAT -> Servers (and Internet), and it is working just fine, including FTP in both PORT and PASV mode on NAT:ed connections. The FreeSWAN gateway and firewall are running Linux-2.4.18, current patch-o-matic (including newnat) and FreeSWAN 1.97. Regards Henrik
