Date: Thu, 17 Oct 2002 11:15:24 -0700 From: Charles Henrich <henrich@sigbus.com> To: freebsd-questions@freebsd.org Subject: IPSEC/NAT issues Message-ID: <20021017111524.A81672@sigbus.com>
next in thread | raw e-mail | index | archive | help
I have a network/firewall where I want to nat an entire network. However, I
also want nat traffic to one remote host in particular out on the internet to
be IPsec'd as well.
[A] (10.x) [B] (Nat) [C] (Real IP)
I've setup IPsec on both machines, and from either machine (B,C) I can ssh to
the other, with ipsec packets all happening happy as a clam. However if try a
connection from behind the nat box to the remote host (A,C) the key exchange
works fine (between B&C), but then no data flows back and forth. Anyone have
any suggestions on this? Thanks!
-Crh
Charles Henrich henrich@msu.edu
http://www.sigbus.com/~henrich
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20021017111524.A81672>