Re: [Nolug] iptables and Netlock Contivity

From: Scott Harney <>
Date: Thu, 15 Jul 2004 07:32:21 -0500
Message-ID: <>

krunk wrote:
> Anyone here using a Netlock Contivity VPN client behind an iptables
> firewall? I can get connected by opening up port 500, but after that I
> can't access the web, or the internal net.

Are you using NAT through that iptables firewall. If so, you need to
look into enabling "NAT traversal" for IPSEC. I've not configured it via
  iptables so I can't provide details but I know that IPSEC and NAT
don't play nice together without some additional trickery.

Scott Harney <>
"Asking the wrong questions is the leading cause of wrong answers"
gpg key fingerprint=7125 0BD3 8EC4 08D7 321D CEE9 F024 7DA6 0BC7 94E5
Nolug mailing list
Received on 07/15/04

This archive was generated by hypermail 2.2.0 : 12/19/08 EST