NAT before IPSEC - reply packets stuck at enc0
Muenz, Michael
m.muenz at spam-fetish.org
Wed Jul 19 12:49:33 UTC 2017
Am 19.07.2017 um 14:46 schrieb Muenz, Michael:
>
>
>
> ipfw -ta list
> 00179 4 112 Wed Jul 19 14:40:34 2017 nat 1 log ip from
> 10.26.2.0/24 to 10.24.66.0/24
> 00179 4 112 Wed Jul 19 14:40:34 2017 nat 2 log ip from
> 10.24.66.0/24 to 10.26.1.1 in recv enc0
Sorry, old paste with 2 instaces.
root at PB-FW1-FRA:~ # ipfw -ta list
00179 211 5908 Wed Jul 19 14:48:43 2017 nat 1 log ip from
10.26.2.0/24 to 10.24.66.0/24
00179 22 616 Wed Jul 19 14:45:38 2017 nat 1 log ip from
10.24.66.0/24 to 10.26.1.1 in recv enc0
65535 10617 3717450 Wed Jul 19 14:48:43 2017 allow ip from any to any
More information about the freebsd-net
mailing list