16.3.3. Procedure – Forwarding IPSec traffic on the packet level - - Proxedo Network Security Suite 1.0 Administrator Guide

16.3.3. Procedure – Forwarding IPSec traffic on the packet level

If you do not want to terminate IPSec traffic on PNS, only to forward such connections, you have to create packet filtering rules for the ESP (protocol number 50) and AH (protocol number 51) protocols. Complete the following steps:

Select the Packet filter MC component from the configuration tree, and click on the Ruleset tab.
In the Hierarchy column, open the filter table, and select the FORWARD chain.
Click New Child, enter 50 into the Protocol field, and click OK. Optionally, you can also specify the source and destination interfaces
Select the FORWARD chain, click New Child, enter 51 into the Protocol field, and click OK.
Click Generate ruleset.
Commit and upload the configuration changes and reload the Packet filter component.

Previous	Up	Next
	Home

Proxedo Network Security Suite 1.0 Administrator Guide

16.3. Configuring IPSec connections