>
> Or a module we may have built for the kernel but not actually installed ?
>
Sigh! Time to answer my own question (I hope).
Looking at our kernel config, I see that is selected.
Looking in kernelbuild/net/netfilter I can see an xt_policy.ko module.
However, this module is not installed on t
Gerd,
Thanks very much for the confirmation and pointer on how to do things
properly.
>> I'm not too keen on opening the firewall to all UDP packets using that
>> UDP
>> port number. Is there a more elegant method ?
>
> Yes, you could use the policy match of iptables. E.g. "-m policy --pol
>
Hi Graham,
> So, it appears that the UDP packets come through the tunnel, are decrypted
> and then looped-back through the firewall ?
That is correct.
> I'm not too keen on opening the firewall to all UDP packets using that UDP
> port number. Is there a more elegant method ?
Yes, you could use
We've come across a problem sending UDP packets through a tunnel when the
tunnel goes through a firewall and I was hoping someone can
explain/confirm what is going on (please).
Our machine sets up a tunnel to a secure gateway and then opens a UDP
socket through that tunnel to a machine on the far