IPfilter
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: ipfilter v4.1.8 && UDP (OpenVPN)

from [Corey Johnston] [Permanent Link][Original]
To: ipfilter@coombs.anu.edu.au
Subject: Re: ipfilter v4.1.8 && UDP (OpenVPN)
From: "Corey Johnston" <coreyj@gmail.com>
Date: Mon, 12 Mar 2007 11:18:02 +1100
Cc: "Matthias Apitz" <m.apitz@oclcpica.org>, darrenr@reed.wattle.id.au
Delivered-to: sp-com-lists@consult.net
Delivered-to: ipfilter-list@securepoint.com
Dkim-signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=BuJa9LZT0/n5vGMYzhHg0ngTM+Z37gnWGuRqw/nwIEIHH/cH2YQoO352l/w7dgq0zSqyL4bZ6DfCo48Ri/7Vwwv1sAUlXsnGP+VDjayzzrp88RZnRO+XwktGrNCyKMOPqtK97wPrgVKaTYu7i9LUZfiosVqRjA+Z08cjYnIKR34=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=Z3mRDl/jcaS3kF5xBl9eXaNQ04A70MUvNH99hY/FwQnWv4iikYzE0dHV6mR47rj1u9AVhp/T03JYlILHhYsbOFMIyC30Gc4NNFG8ffg+H3tSF5Ag8DVo+N6+ZILaxU0TWgaeFw/VqOE4QOr9gXzBBKivw0SMalgq9b1MYQ3xe4A=
In-reply-to: <45F48FB0.3030904@reed.wattle.id.au>
References: <20070305101930.GA4664@rebelion.Sisis.de> <45F48FB0.3030904@reed.wattle.id.au>
Sender: owner-ipfilter@coombs.anu.edu.au 
On our IPFilter 4.1.17 (Solaris 10/x64) firewall, I've got the
following config to enable OpenVPN.

There's definitely no problems with load and it routinely transfers
hundreds of megabytes per session without issue:

ipf.conf
pass in quick on <interface> proto udp from any to a.b.c.d port = 1194
keep state

and ipnat.conf
rdr <interface> w.x.y.z port 1194 -> a.b.c.d port 1194 udp

Hope this helps.
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: ipfilter v4.1.8 && UDP (OpenVPN), Darren Reed
Next by Date:  RE: ipfilter bug on tunnel interface?, Xu, Chun Gang \(Titan\)
Previous by Thread:  Re: ipfilter v4.1.8 && UDP (OpenVPN), Darren Reed
Next by Thread:  ip filter packet flow question, Nikolaus Filus
Indexes:  [Date] [Thread] [Top] [All Lists]