UTM Firewall

Network Protection: Firewall, NAT, QoS, & IPS RoadWarrior VPN firewall rules

UTM Firewall requires membership for participation - click to join

Thread Info

State Not Answered
Locked Locked
Replies 0 replies
Subscribers 2 subscribers
Views 544 views
Users 0 members are here

Options

Suggested

This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

RoadWarrior VPN firewall rules

David Garcia Jr. over 23 years ago

How can I enforce firewall rules to only work with IPSEC clients? I want to allow only clients that are running IPSEC with Astaro to pass through to NAT'ed ports.

Example:

VPN
0.0.0.0/255.255.255.255.255

External
192.168.2.1/255.255.255.255

DMZ
192.168.1.1/255.255.255.255

DBServer
192.168.1.2/255.255.255.255

Source      Port   Destination  Port
192.168.2.1 1521   192.168.1.2  1521

DMZ => External
192.168.2.0 => 192.168.1.0

:Currently using

External PostGres DBServer allow

:Want, but doesn't work. after it passes the IPSEC tunnel, the packet is dropped by firewall

VPN PostGRES DMZ allow

  [:(]

This thread was automatically locked due to age.