[ previous ] [ next ] [ threads ]
 
 From:  lola <lola at yais dot net>
 To:  "m0n0wall at lists dot m0n0 dot ch" <m0n0wall at lists dot m0n0 dot ch>
 Subject:  how to filter ipsec traffic?
 Date:  Mon, 24 Oct 2005 13:28:28 +0200
hi all,

i've sucessfully set up mobile clients with the bintec ipsec client.
evereything works fine but i cant figure out where to put the filtering
rules for ipsec traffic.

i have 4 networks and i want mobile ipsec clients to have access to lan
only.

i've tried the following rules but they don't work. can anybody provide me a
sample set of rules?

block 192.168.22.0 (remote ipsec client network) from wan to opt1
block 192.168.22.0 from lan to opt1

it doesnt matter what rules i have, ipsec mobile clients alway have full
access to all networks. am i missing something?

--

Thomas Lohner