[Users] A question NAT/ MAsquerade & Fresswan

Hi,

I noticed this problem using precompiled version of freeswan suite for RedHAT

after started IPSEC Service NAT rules stop to work ....

This appen on
RedHAT 7.3, and 8,0

this is ruleset , very simple :

   Chain POSTROUTING (policy ACCEPT 2886 packets, 203K bytes)     pkts bytes target prot opt in out source    destination

      16 960 MASQUERADE icmp -- * eth1 172.30.0.0/16    0.0.0.0/0

Do you need help?

In addition to our free technical library, Pantek provides professional IT services to companies who utilize Open Source software: Learn more about Pantek's Technical Support offerings Place an order for 24/7/365 Technical Support here Learn more about Pantek, who we are, and what we do Chat with a Live Operator Related lists.freeswan.org Links 1998-fall 1998-spring 1998-summer 1998-winter 1999-winter announce briefs bugs design freeswan-list hipsec ietf-sectest users users-admin Request more information about Pantek

>From an internal workstation I executed a ping to 217.141.x.x, and
after I has started the service, the client can't' ping that address anymore, after stopped the service, it has restarted to ping

I've also tried to apply rules before and after the start of ipsec service but I has the same problem.

In other Environment , where I recompiled everything ( kernel, freeswan), I have no problem ....

Thank you all

Filoips