[SOLVED] Use an IPSEC connected DNS or LDAP server from the firewall itself

lrosenman · September 04, 2019, 01:21:41 PM

root@home-fw:~ # tcpdump -XX -vv -s 0 -i ipsec2000 dst host 10.64.0.4
tcpdump: listening on ipsec2000, link-type NULL (BSD loopback), capture size 262144 bytes

nothing (even for LAN->IPSEC traffic0

mimugmail · September 04, 2019, 02:09:27 PM

Hm, and enc0 also nothing?

lrosenman · September 04, 2019, 02:26:19 PM

Bingo. I had screwed up which address was in which VPN. tcpdump on enc0 had me see the correct source address, and having added the correct 10.128* address to the local network gateway on Azure makes it work.

THANK YOU.

mimugmail · September 04, 2019, 03:11:52 PM

Great! 8)

[SOLVED] Use an IPSEC connected DNS or LDAP server from the firewall itself

lrosenman

September 04, 2019, 01:21:41 PM #15

mimugmail

September 04, 2019, 02:09:27 PM #16

lrosenman

September 04, 2019, 02:26:19 PM #17

mimugmail

September 04, 2019, 03:11:52 PM #18