Hello!
I still have problems after updating to Astaro 4 from 3.x with my IPSEC VPN Connections. The connection is established without Problems, but the traffic is beeing blocked by the packet filter...
VPN-Log
-----------
000 #22: "Fester_1"[1] 194.97.xx.xxxx STATE_QUICK_R2 (IPsec SA established); EVENT_SA_REPLACE in 3047s; newest IPSEC; eroute owner
000 #22: "Fester_1"[1] 194.97.xx.xxx esp.fb52ef1b@194.97.xx.xxx esp.39b07037@195.35.yyy.y tun.1008@194.97.xx.xxx tun.1007@195.35.yyy.y
000 #21: "Fester_1"[1] 194.97.xx.xxx STATE_MAIN_R3 (sent MR3, ISAKMP SA established); EVENT_SA_REPLACE in 7247s; newest ISAKMP
VPN Routes
----------------------
8 192.168.77.0/24 -> 194.97.xx.xxx/32 => tun0x1008@194.97.xx.xxx
I have to add a filter rule for 194.97.xx.xxx to access everything in the internal net. Without adding this rule manually, i can only access the firewall itself.
Switching the IPSEC auto packet filter to on or off makes no difference. i am not using virtual-ip or nat-t.
Bevore upgrading the asl to version 4 the config was working without problems...
some hints?
J.Fester
This thread was automatically locked due to age.
