This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

IPSEC + VPN +Firewall Rules

How do I get Astaro to permit IPSEC VPN traffic to pass firewall without having to define a new network with the IP? The network users will be roadwarriors who may get different IP addresses. I'd like to just define a firewall rule that says if they are

0.0.0.0 : TELNET ------> SERVER : TELNET

but only if they have established IPSEC first!

Thanks in advance for all the help.

David

This thread was automatically locked due to age.

Parents

0 Showmastadmin over 23 years ago

David,

I've never heard of a VPN working that way, but anything's possible I guess. The rules setup on my firewall/VPN requires an allowance only of certain IP's or subnetworks. I think, however, that you can allow more than one, and then masqerade there IP into an internal IP for your network. At least, those are the rules and permissions that I use.

Randy
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 Showmastadmin over 23 years ago

David,

I've never heard of a VPN working that way, but anything's possible I guess. The rules setup on my firewall/VPN requires an allowance only of certain IP's or subnetworks. I think, however, that you can allow more than one, and then masqerade there IP into an internal IP for your network. At least, those are the rules and permissions that I use.

Randy
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data