Hello Rene, you must open UDP port 500 for IKE and UDP port 4500 if you have a NAT situation. In order to pass encrypted IPsec packets you must open IP protocol 50 (ESP).
Regards Andreas On 02/12/2011 08:15 PM, Rene Bartsch wrote: > Hello Andreas, > > After using tcpdump I set all IPTables policies to "ACCEPT" and > doing a flush of all rules lead to a working VPN. > > Which IPtables rules do I have to set to allow IPSec connection handshake? > > Best regards, > > Renne > ====================================================================== Andreas Steffen [email protected] strongSwan - the Linux VPN Solution! www.strongswan.org Institute for Internet Technologies and Applications University of Applied Sciences Rapperswil CH-8640 Rapperswil (Switzerland) ===========================================================[ITA-HSR]== _______________________________________________ Users mailing list [email protected] https://lists.strongswan.org/mailman/listinfo/users
