4. IPSec Passthrough not working

IPSec Passthrough not working

  • C

    I have disabled the allow any rule from the LAN subnet and have started to create a rule for each type of traffic we would allow inside users to access. It has not been as bad as it sounds. Very few complaints from a non tech user base.

    Anyhow, IPsec Passthrough option is enabled via the NAT Outbound tab but IPSec VPNs cannot go through with the "LAN subnet" to anywhere rule disabled.

    I have made a rule that allows clients from the "LAN Subnet" to connect to any host via UDP 500 thinking the establishment of a connection would allow the outside host back in on whatever port is necessary for key negotiation. I have apparently screwed something up or do not understand exactly what is happening. Can anyone provide assistance?

    Thanks

    0
  • H

    You need to allow protocol esp and ah additionally to go out/through.

    0
  • C

    Allowing AH, ESP, and UDP 42000 outbound from the LAN subnet did the trick. Thanks for the help.  :D

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2019 Rubicon Communications, LLC | Privacy Policy