Hi, --- James Richardson <[EMAIL PROTECTED]> wrote: > > Hiya, > > I'm trying to get my XP box behind an ipfilter > firewall to connect as a client to a VPN. > > However, I'm getting packets blocked coming back > from the vpn when its verifying the username & > password. > There is a TCP component to the setup which is > getting correctly allowed through. > > The relevant lines in ipf.conf ( from memory as I > dont have access to the box right now) > > block in log on le1 from any to any > > pass out quick on le1 proto gre from any to any keep > state
Isn't this line supposed to give a syntax error? Something like "Can only use keep state with TCP/UDP/ICMP". Try : pass in quick proto 47 from any to any pass out quick proto 47 from any to any .. <add quick keep state rule for TCP component>... block in all block out all - Biswajit > > and I added gre to /etc/protocols as id 47. > > However these are still getting blocked... > > Any ideas? > > Thanks for your help! > > James > >
