Sorry for the long windedness [:)]
Amazing product! I'm a home user and have been looking over linux distro firewalls for a while, this is by far the best one I have found with a home edition.
I just downloaded Astaro last night and installed it. I have also recently purchased an AT&T 3G Microcell. I live in the sticks and get no cell service at all, with the Microcell running I get 5 bars of 3G in my house so it is a nice addition.
I am not able to get the Microcell to connect through Astaro however. From the research I have done the Microcell first syncs with an NTP server, then does a DNS lookup and then establishes a VPN with AT&T.
I have created PF rules to allow any and all ports to and from the Microcell to the external interface. I have also set up specific rules to allow the external interface access on the following ports(probably total overkill but I had to try after nothing else worked):
UDP - 123 - NTP
TCP - 443 - SSL
UDP - 500 - IPSec stuff
UDP - 4500 - More IPSec stuff
These are the ports that AT&T states need to be open for the Microcell to function (They actually mention UDP - 4500 twice, no idea why, screwed up doc writers I am assuming.)
I guess that my question is: Is Astaro blocking the IPSec connection that the Microcell is trying to make because it cannot authenticate it?
I have tried disabling everything I can think of that might be blocking this connection. I have no way of getting into the Microcell itself, the best I can do is reserve it an IP by MAC.
While watching the bandwidth reports from Astaro it appears to me that the Microcell is kind of spoofing my external IP and trying to use that for it's NTP and DNS queries, possibly looking for them over a VPN it thinks it has established.
btw AT&T is completely useless regarding support on these devices, they are pretty new and most of the support staff doesn't even know what you are talking about.
This thread was automatically locked due to age.
