IPSEC passthrought transparent pfsense
-
Hello,
First my network configuration:
cisco router (dmvpn hub) –----- pfsense (transparent) ------- Internet ------- cisco router (dmvpn host)
Now my issue:
With this howto: http://people.pharmacy.purdue.edu/~tarrh/Transparent Firewall-Filtering Bridge - pfSense 2.0.2 By William Tarrh.pdf
I've changed my pfsense to a transparent firewall. Then I made rules which allow UDP port 4500, 500 and ESP traffic through the firewall.
But the VPN connection doesn't work. After this I've edited the rule and allows all traffic throught the firewall. But it also not run.
If I disable all paket filtering it works.Can me anybody said what I've forgot or what is wrong?
best regards
kruemel
-
In addition to ESP protocol, I also allow the AH (authentication header) protocol for IPsec VPNs. You don't mention that one so maybe this is what is missing…
-
Hello iamzam,
thanks for your reply. I've added the rule to allow AH but it also didn't work.