I run latest ipfilter 3.4.28 on openbsd 3.1 I need to allow vpn (software) client to work.
I get this from tcpdump: 00:16:25.945021 vpn.XXX.net > 204.177.198.17: icmp: host XXX.net-IP-ADDR unreachable - admin prohibited filter 00:16:30.914250 vpn.XXX.net > 204.177.198.17: icmp: host XXX-net-IP-ADDR unreachable - admin prohibited filter 00:16:35.920748 vpn.XXX.net > 204.177.198.17: icmp: host XXX-net-IP-ADDR unreachable - admin prohibited filter Notice that vpn.XXX.net (fictitous) shows hostname at first, then IP addr, any reason for this? How must I configure ipf.rules and/or ipnat.rules to make my internal vpn clients work with Cisco 3000 Concentrator and Cisco software on client machine? I am new to ipfilter but I read alot on mailing list archives and find no answer. Thank you! -vadim Vadim (Ukranian Stallion) Pushkin _________________________________________________________________ Send and receive Hotmail on your mobile device: http://mobile.msn.com
