[Openswan Users] Cannot connect XP SP2 roadwarrior to server - any known issues?

Nate Carlson natecars at natecarlson.com
Fri Sep 17 10:55:22 CEST 2004

On Fri, 17 Sep 2004, Marcus Blomenkamp wrote:
> Thanks, that did the trick.
> Before fiddling with IPSec i already re-enabled ICMP messages. However 
> having the SP2 firewall disabled completely gives me a strange mood, not 
> from a security point of view but as a matter of principle.

There should be a way to get it to allow the proper IPSec traffic, but I'm 
not sure how you'd do that.

> Now i have to find the exact switch to get this thing running. Tcpdump 
> shows ESP packets and a few control packets (ARP etc) only - just as 
> expected. Windows Firewall GUI is centered around giving applications or 
> system access to TCP or UDP ports. I'm stuck here :(

Yeah, it's annoying.

> > [L2TP over IPsec Comments] 
> This is on my TODO list as it allows me to model the routing more 
> sensible. Currently my roadwarriors cannot contact their sibling 
> machines in the same subnet directly because of tunnel policies 
> preceding transport policies.

Well, maybe you don't need to worry about making the firewall work, then. 

| nate carlson | natecars at natecarlson.com | http://www.natecarlson.com |
|       depriving some poor village of its idiot since 1981            |

More information about the Users mailing list