4. ICMP packets between site-to-site VPN client/server?

ICMP packets between site-to-site VPN client/server?

  • J

    I'm in the process of trying to tighten up the security on my site-to-site VPN interface between my two homes (previously just had an any/any rule on that interface from when I first set it up).

    Since taking away the any/any rule I've noticed my logs are showing blocks of ICMP traffic between the the server and client as shown below.  This traffic did not show up when I first took the any/any rule away and had no rules at all.  It only showed up after I added a rule to allow RDP between a specific host on the client side to a host on the server side.  But even disabling that rule hasn't stopped the ICMP traffic.

    Is this traffic just normal "check if alive" traffic between the two nodes and if so why have I never seen it before?

    EDIT: I guess it was a normal "check if alive" packet as once I created a pass rule for it, the traffic stopped once the 1 packet passed.

    0
  • C

    That's from gateway monitoring, where the specific ovpnX interface is assigned.

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2019 Rubicon Communications, LLC | Privacy Policy