Quote:
Originally Posted by atomicsushi  In the tracker, instead of seeing protocol 50 come through, all I see is UDP500 and protocol ipv6-crypt. Why am I seeing ipv6-crypt when I don't have it enabled?
However, when i do a tcpdump on both the incoming and outgoing interface on the firewall, i see protocol ESP packets come through ok. |
You will see "ipv6-crypt" as the service for most of the protocols listed in the IPSEC group [the exception being IKE], if you look at the information field you should see ESP listed. Its very misleading and the fact that you can't filter on ipv6-crypt in the service doesn't help matters.