On 3/1/06, dasz <daszylstra at comcast dot net> wrote:
> Thank you . . . . problem is solved . . . . . I added a rule to/from the
> affected subnets to allow all traffic including fragmented packets . . . .
> they tell me they are now getting the SNMP traps . . .
> does this mean I can create rules to block
> ports and/or specific IPs for IPSEC traffic?
only on the way out, via the LAN rules, not on incoming traffic.