On Jan 16, 2009, at 12:58 PM, Chris Buechler wrote:
On Fri, Jan 16, 2009 at 12:50 PM, Lee Verberne <[email protected]>
wrote:
I'm having issues with dnsmasq being unable to contact an overridden
nameserver because they're not being sourced from an interface that
has an
ipsec policy.
http://doc.pfsense.org/index.php/Why_can%27t_I_query_SNMP%2C_use_syslog%2C_NTP%2C_or_other_services_initiated_by_the_firewall_itself_over_IPsec_VPN%3F
Oh yes. Thanks, I had missed that.
Also, that doc points out that my bogus route was a little too bogus.
It fixed traffic from the pfsense but probably would have crippled
traffic from other hosts on the LAN from the invalid ICMP redirect.
Thanks,
-lee
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
Commercial support available - https://portal.pfsense.org
