On 31/08/18 01:18, Paul Wouters wrote: > If there is no NAT you need to open protocol 50 ESP (not port, protocol) >
Thanks Paul OK...... I know I have that open on the server firewall but can't remember seeing an option on the cloud providers one. Is that because the negotiation is over 500/4500 but the data itself flows on protocol 50 ? Just curious :-)
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Swan mailing list Swan@lists.libreswan.org https://lists.libreswan.org/mailman/listinfo/swan