[vpn-help] Updated package and problem reports
Peter Eisch
peter at boku.net
Mon Aug 14 12:57:19 CDT 2006
On 8/14/06 12:45 PM, "Matthew Grooms" <mgrooms at shrew.net> wrote:
>
> Did you mention before that its being NATd twice or is this another
> setup? ie ...
>
That is not this config. I can test that again next, but this is more
direct -- only the client is NAT'd.
> Client -> NAT/FW -> [Internet] -> NAT/FW -> Server
>
> ... Is there a firewall installed on the Internet facing device? It
> would be good if we could get a tcpdump at the point of entry into your
> network so we can see if initiators second packet is arriving on udp
> port 4500. Do you have the means to verify this?
>
I can do some testing with this. The server is [unfortunately] a production
system for a marketing company and they're short of fuse if I bugger stuff
up.
> If it is passing through all firewalls and NAT devices, what does
> racoon say in the debug log when it receives the initiator second packet?
I'll set up tcpdumps and watch what does[n't] happen and reply in a few
mins.
More information about the vpn-help
mailing list