[FreeBSD 10.0] nat before vpn, incoming packets not translated
Eric Masson
emss at free.fr
Fri Mar 7 18:40:13 UTC 2014
Philipp Schmid <philipp.schmid at openresearch.com> writes:
Hi Philipp,
> FreeBSD 10 seems to have problems with IPSec and filtering/nat.
> Maybe your problem is related to:
>
> http://www.freebsd.org/cgi/query-pr.cgi?pr=185876
I've rebuilt a kernel with the last patch available in the PR.
It doesn't work (return nat rule in place).
I think I'll try the following setup on gateway1 :
- IIPTran https://www.ietf.org/rfc/rfc3884.txt (ipip tunnel in transport
mode)
- outside nat with pf on gif interface
What bothers me is that ipfw reverse nat should work...
Regards
Éric Masson
--
J'ai une dissert' en français : "Trouvez-vous regrettable
que le camping sauvage soit interdit en France ?"
Pouvez-vous m'aider, car je n'ai jamais campé !...
-+- Laure in:<http://www.le-gnu.net>- Youkaidi, youkaida -+-
More information about the freebsd-net
mailing list