1. Home
  2. pfSense® Software
  3. Firewalling
  4. Response SA packets getting droped (GRE over IPSec tunnel)

Response SA packets getting droped (GRE over IPSec tunnel)

  • G

    Didn't know where to put this so i ended up here.

    Being having a little problem with one setup (diag.jpg attached). Its a GRE tunnel over ipsec but it have the a need to use nat inside it.

    If i try to connect to the remote server, the packet capture on the gre interface shows ACK from the other side (tcpdump-gre.jpg), but it seems that when the packet leaves the tunnel it gets droped by the firewall (fw-drop.jpg) for (i guess) being out of state.

    Any help on this will be appreciated cause i'm lost here.

    PS: if i posted this in the wrong place, feel free to move it where it belongs.

    Edit: added NAT-OUT rules screen shot just in case, cause its more likely the culprit.







    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy