From owner-freebsd-net@FreeBSD.ORG Sun Apr 21 00:59:16 2013 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.FreeBSD.org [8.8.178.115]) by hub.freebsd.org (Postfix) with ESMTP id A11EB57A for ; Sun, 21 Apr 2013 00:59:16 +0000 (UTC) (envelope-from prvs=18233350e1=killing@multiplay.co.uk) Received: from mail1.multiplay.co.uk (mail1.multiplay.co.uk [85.236.96.23]) by mx1.freebsd.org (Postfix) with ESMTP id 3064615CA for ; Sun, 21 Apr 2013 00:59:15 +0000 (UTC) Received: from r2d2 ([46.65.172.4]) by mail1.multiplay.co.uk (mail1.multiplay.co.uk [85.236.96.23]) (MDaemon PRO v10.0.4) with ESMTP id md50003398509.msg for ; Sun, 21 Apr 2013 01:59:14 +0100 X-Spam-Processed: mail1.multiplay.co.uk, Sun, 21 Apr 2013 01:59:14 +0100 (not processed: message from valid local sender) X-MDDKIM-Result: neutral (mail1.multiplay.co.uk) X-MDRemoteIP: 46.65.172.4 X-Return-Path: prvs=18233350e1=killing@multiplay.co.uk X-Envelope-From: killing@multiplay.co.uk X-MDaemon-Deliver-To: freebsd-net@freebsd.org Message-ID: <394C5F1CA58741F9965A5782A1117153@multiplay.co.uk> From: "Steven Hartland" To: "Karl Denninger" , References: <517333A8.7020704@denninger.net> Subject: Re: Odd NAT/IPSEC question -- help! :-) Date: Sun, 21 Apr 2013 01:59:36 +0100 MIME-Version: 1.0 Content-Type: text/plain; format=flowed; charset="iso-8859-1"; reply-type=original Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2900.5931 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.6157 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 21 Apr 2013 00:59:16 -0000 ----- Original Message ----- From: "Karl Denninger" ... > My "ordinary" NAT entry is simply "nat 1 ip from any to any via em1", > which works fine for ordinary "on the client" traffic; no problems with > that. ... Just a stab in the dark, as I vaguely remember something similar, do you also need to configure your nat for gre as well as ip? Regards Steve ================================================ This e.mail is private and confidential between Multiplay (UK) Ltd. and the person or entity to whom it is addressed. In the event of misdirection, the recipient is prohibited from using, copying, printing or otherwise disseminating it or any information contained in it. In the event of misdirection, illegible or incomplete transmission please telephone +44 845 868 1337 or return the E.mail to postmaster@multiplay.co.uk.