Re: PF VPN traffic doesnt work after update 4.0 to 4.1

smonek Wed, 16 May 2007 14:10:26 -0700

Ok work with this config!!!!

pass in quick on $ext_if proto gre from any to $ext_ip1 no state
pass out quick on $ext_if proto gre from $ext_ip1 to any no state





---- WiadomoED Oryginalna ----
Od: smonek <[EMAIL PROTECTED]>
Do: misc@openbsd.org
Data: 16 maja 2007 22:16
Temat: PF VPN traffic doesnt work after update 4.0 to 4.1

> After update OpenBSD 4.0 -> 4.1 I cant connect to external vpn server from
my
> lan behaind
> my OpenBSD firewall
>
> net.inet.gre.allow=1
> net.inet.gre.wccp=1
> net.inet.mobileip.allow=1
>
> pf.conf
> ext_if="rl0"
> int_if="sis0"
> ext_ip1="83.15.206.82"
>
> pass in quick on $ext_if proto tcp from any to $ext_ip1 port = 1723
modulate
> state
> pass in quick on $ext_if proto gre from any to $ext_ip1 keep state
> pass out quick on $ext_if proto gre from $ext_ip1 to any keep state
>
>
> pfctl -ss
>
> all gre 83.15.206.82 <- 83.17.92.139 NO_TRAFFIC:SINGLE
> all gre 83.17.92.139 <- 10.0.0.35 NO_TRAFFIC:SINGLE
> all gre 10.0.0.35 -> 83.17.92.139 SINGLE:NO_TRAFFIC
> all tcp 83.17.92.139:1723 <- 10.0.0.35:2422 ESTABLISHED:ESTABLISHE
> all tcp 10.0.0.35:2422 -> 83.15.206.82:53505 -> 83.16.92.138:1723
> ESTABLISHED:ESTABLISHED
>
> what it is????

Re: PF VPN traffic doesnt work after update 4.0 to 4.1

Reply via email to