Here is how I did a VPN installation on a M1122 (4 pinholes needed)

1.) UDP500 port udp500
2.) UDP50 port udp50 and 51
3.) UDP1024 port udp1024 to udp64000
4.) TCP1024 port tcp1024 to udp64000

BTW, for the M11, there are two different software images. One has the default
to pass all traffic, the other to block all traffic (that is, if you don't
specify pinholes).

"Steve R" <steve.rielly@extranet.co.nz> wrote:
> Hi Matt,
>
> How do you pinhole protocol 50?? Through the browser I was only able to
> select TCP,UDP or ICMP.
> I haven't seen anything, including through the CLI that enables me to
> allow
> proto50 traffic inbound.
>
> I get the same problem regardless of which end the ADSL is at, the IPSec
> VPN connection will still establish, cause that part is using UDP500,
> but the traffic through proto50 is still only outbound.
...

Cheers,
Christoph.

---------------------------------->8-----
Christoph Janisch
Computer Consultant/Analyst
christophj@bigfoot.com
phone: +64 9 638 6546

____________________________________________________________________
Get your own FREE, personal Netscape WebMail account today at http://home.netscape.com/webmail

This message is part of the NZ Broadband mailing list.
see http://unixathome.org/adsl/ for archives, FAQ,
and various documents.
To unsubscribe: send mail to majordomo@unixathome.org
with "unsubscribe adsl" in the body of the message
Received on Wed Oct 25 14:08:55 2000