 | ||
 Secure Client through a FreeBSD firewall | ||
| CPUG | |
| The Check Point User Group | |
| A Resource For The Check Point Community. Fast. Useful. Independent. | |
|
| |||||||
 |
| | LinkBack | Thread Tools | Display Modes |
 2005-08-13 | |||
| |||
 Secure Client through a FreeBSD firewall Secure Client through a FreeBSD firewall Add the following to /etc/rc.firewall (substituting for FIREWALL_IP). Make sure this is added before your anti-spoofing rules, because the firewall will be sending connections to the internal IP. # Allow securemote connections from the firewall $fwcmd add pass udp from FIREWALL_IP to any 500 $fwcmd add pass 50 from FIREWALL_IP to any Add the following to natd.conf, where INTERNAL_IP is the internal IP address of the host running SecuRemote: redirect_port esp INTERNAL_IP redirect_port udp INTERNAL_IP:500 500 This works under FreeBSD 4.3-RELEASE. My understanding is that natd can't handle esp traffic prior to version 4.2. -- PhoneBoy - 02 Apr 2004 FAQForm FAQs.Class: SecureClientFAQs FAQs.OS: FAQs.Version:  |
|
| Thread Tools | |
| Display Modes | |
| |
Linear Mode
