Jump to content

This is the support site for Andrews & Arnold Ltd, a UK Internet provider. Information on these pages is generally for our customers but may be useful to others, enjoy!

FireBrick to FireBrick IPsec (Howto): Difference between revisions

← Older editNewer edit →
Content deleted Content added
AA-Andrew (talk | contribs)
autoreview, Bureaucrats, editor, Interface administrators, reviewer, Administrators
12,619 edits
AA-Andrew (talk | contribs)
autoreview, Bureaucrats, editor, Interface administrators, reviewer, Administrators
12,619 edits
mNo edit summary
Line 28: Line 28:
</ipsec-ike>
</ipsec-ike>


A firewall filter may be needed too, eg:
If you firewall WAN to 'Self' (The Firebrick, then a firewall filter may be needed too, eg:


<rule-set name="filters" no-match-action="drop">
<rule name="IPsec from London FB" protocol="50" action="accept" source-ip="198.51.100.1"/>
<rule name="IPsec from London FB" protocol="50" action="accept" source-ip="198.51.100.1"/>
</rule>


==FireBrick B Config==
==FireBrick B Config==
Line 40: Line 38:
</ipsec-ike>
</ipsec-ike>


A firewall filter may be needed too, eg:
If you firewall WAN to 'Self' (The Firebrick, then a firewall filter may be needed too, eg:


<rule-set name="filters" no-match-action="drop">
<rule name="IPsec from Reading FB" protocol="50" action="accept" source-ip="203.0.113.1"/>
<rule name="IPsec from Reading FB" protocol="50" action="accept" source-ip="203.0.113.1"/>
</rule>
Retrieved from "http://support.aa.net.uk/FireBrick_to_FireBrick_IPsec_(Howto)"