Re: [pfSense Support] Port Forward of ESP protocol

[Tommaso Di Donato]

On 10/4/05, Jörgen Haraldsson <[EMAIL PROTECTED]> wrote:

Hi

The line says:

rdr on ste0 proto esp from any to 192.168.1.20 port 500 -> 192.168.2.100
port 500

I don't know if port 500 is the right port to use with esp.
But It does not matter what port i use.

Mmmhh.. I think this is an error!!! ESP is _protocol_ 50, and not port 500..
So, you need 2 rules: ome for protocol ESP, and one for UPD/500 (that is IKE).

(I think that here you can find some infos.... http://wiki.openswan.org/index.php/Firewalls)

Tom