Search the list archives, this might be the same panic I reported about 18 months ago....
> -----Original Message----- > From: [EMAIL PROTECTED] [mailto:owner- > [EMAIL PROTECTED] On Behalf Of Darren Reed > Sent: Thursday, May 03, 2007 1:39 PM > To: Dave Ockwell-Jenner > Cc: [email protected] > Subject: Re: Panics with IPsec tunnels > > Dave Ockwell-Jenner wrote: > > Yes, indeed. The relevant line from ipnat.conf is: > > > > map eri0 192.168.1.0/24 -> 0.0.0.0/32 proxy port 500 ipsec/udp > > > > udp port 500 is passed through the firewall, as well as ESP and AH > > protocols, a-la: > > > > pass in log on eri0 proto udp from any to any port = 500 group 110 > > pass in log on eri0 proto esp from any to any > > pass in log on eri0 proto ah from any to any > > > With rules like that in ipf.conf, try running without the proxy line for > ipsec. > > But I'm still interested in the crash dump :) > > Darren
