Ah thanks Lonnie. I think I might have read it once but it didn't cross my mind.
I probably need to enable it somewhere too on the terminating device.
Regards
Michael Knill
On 24/8/20, 9:00 am, "Lonnie Abelbeck" wrote:
Michael,
Remember if IPsec NAT traversal is enabled, UDP 4500 is u
Michael,
Remember if IPsec NAT traversal is enabled, UDP 4500 is used.
4500/udp - NAT traversal
Lonnie
> On Aug 23, 2020, at 5:20 PM, Michael Knill
> wrote:
>
> Hi Group
>
> I don't think I'm doing this correctly and its not working. And yes I realise
> that Astlinux can terminate IPsec
Whoops just thinking about it, should it be NAT EXT->DMZ for all items. I will
try.
Regards
Michael Knill
From: Michael Knill
Reply to: AstLinux List
Date: Monday, 24 August 2020 at 8:36 am
To: AstLinux List
Subject: [Astlinux-users] Forwarding IPsec traffic through Astlinux
Hi Group
Hi Group
I don't think I'm doing this correctly and its not working. And yes I realise
that Astlinux can terminate IPsec but this is easier (if it works) as the
device is already configured.
Here is what I am doing:
NAT EXT->DMZ UDP 0/0 500 Dest: 192.168.200.2
Pass EXT->DMZ ESP 0/0 Dest: 192.168
