newbie router question

[tiffert]

Complete newbie here.

I have two 10.2 client macs behind an asante friendlynet 3004lc router. The router provides the NAT & firewall for my DSL connection. The router supports client IPsec pass through, according to its specs.

I would like all traffic between the macs on the LAN (behind the router) to travel over IPsec. But something is not working. I can’t make any filesharing connections between them with VaporSec. Every attempt times out.

If I use a patch cord to connect the two macs directly to one another (that is, remove the router from the circuit), I can connect without any problems. I assume that IPsec is working, because VaporSec says racoon is running.

What am I missing? I set the router to open incoming port 500 on trigger port 500. Still no luck.

Is this doable?

TIA for any help!

[Anonymous]

Try also allowing IP protocol ID 50 and IP protocol ID 51 through the firewall in both directions for Encapsulating Security Protocol (ESP) and Authentication Header (AH).

Larry

[tiffert]

I don’t think enabling IP protocols 50 & 51 is a user-configurable option on my router. If it is, I don’t know how to do it.

Thanks!

[Author]

Posts