IPSEC BINAT , blocking TCP

  • I've read over the forums and cannot find an answer that works for my problem.

    I currently have a IPSEC VPN to a remote site, the remote site expects me to use a particular address on my end, so I use the BINAT option in P2.

    It works, to a certain point, then locks up using a secure telnet session over port 992. TCP shows up in the firewall logs, blocked under the IPSEC interface.

    I've read all the asymmetric routing posts but cannot get anything to work on my end, even clicking the "Bypass firewall rules for traffic on the same interface" box. Firewall rules are set on IPSEC from any/any.

    Here is my current config:

    Any help would be greatly appreciated.

Log in to reply