[ previous ] [ next ] [ threads ]
 
 From:  Chris Buechler <cbuechler at gmail dot com>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] Firewall blocking IPSEC traffic
 Date:  Wed, 25 Jan 2006 18:48:42 -0500
On 1/25/06, Gurmeet Bedi <GregBedi at valeti dot com> wrote:
>
> shed some light why mono is blocking the traffic between IPSEC tunnel. My
> understanding that Firewall rules don't apply to IPSEC tunnels.
>

They do, but only on outbound traffic, not inbound.  Because outbound
traffic goes through your LAN rule(s), state is kept on all VPN
traffic.  So you'll periodically run into this:
http://doc.m0n0.ch/handbook/faq-legit-traffic-dropped.html

As long as you aren't having any issues, that can be safely disregarded.

-Chris