Date: Mon, 15 Apr 2002 23:11:46 -0700 From: Charles Henrich <henrich@sigbus.com> To: freebsd-security@freebsd.org Subject: IPFW/IPsec Message-ID: <20020415231146.A21593@sigbus.com>
next in thread | raw e-mail | index | archive | help
Im trying to do something trivial here, but I just cant seem to figure out whats going on. Im trying to build a gateway that only accepts ESP tunnel packets. When I enable firewall rules something like: /sbin/ipfw add allow udp from any to any isakmp via xl0 /sbin/ipfw add allow esp from any to any via xl0 /sbin/ipfw add deny all from any to any via xl0 /sbin/ipfw add allow all from any to any Communications fails. The thing is, I cant figure out why. I have xl0 internetaddressed, and dc0 internal network addressed, with a gif0 tunnel setup for the ipsec tunneling. Suggestions? Thanks! -Crh Charles Henrich henrich@msu.edu http://www.sigbus.com:81/~henrich To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020415231146.A21593>