• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1551
  • Last Modified:

Allow ESP traffic on IPCop/iptables?

I refer to the last couple of comments on this question:
http://www.experts-exchange.com/Networking/Q_21779394.html

How can I allow ESP traffic through an IPCop firewall?
And how do I make sure that UDP ports 450 and 5000 are allowed both ways (incoming is defined in port forward)?
0
realfoh
Asked:
realfoh
1 Solution
 
Gabriel OrozcoSolution ArchitectCommented:
don't know ipcop but these are the iptables rules:

iptables -A FORWARD -p esp -j ACCEPT

iptables -A FORWARD -p udp --dport 450 -j ACCEPT
iptables -A FORWARD -p udp --dport 5000 -j ACCEPT

maybe you need to open INPUT if the server software is running on the same box as your linux firewall:
iptables -A INPUT -p esp -j ACCEPT

you only need to open the input rules when the final connection point is the same linux box. if traffic should pass across, then use the forward chain.

Regards.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now