• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1551
  • Last Modified:

Allow ESP traffic on IPCop/iptables?

I refer to the last couple of comments on this question:

How can I allow ESP traffic through an IPCop firewall?
And how do I make sure that UDP ports 450 and 5000 are allowed both ways (incoming is defined in port forward)?
1 Solution
Gabriel OrozcoSolution ArchitectCommented:
don't know ipcop but these are the iptables rules:

iptables -A FORWARD -p esp -j ACCEPT

iptables -A FORWARD -p udp --dport 450 -j ACCEPT
iptables -A FORWARD -p udp --dport 5000 -j ACCEPT

maybe you need to open INPUT if the server software is running on the same box as your linux firewall:
iptables -A INPUT -p esp -j ACCEPT

you only need to open the input rules when the final connection point is the same linux box. if traffic should pass across, then use the forward chain.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now