[strongSwan] StrongSWAN and AVM Fritzbox - Help!

Andreas Steffen andreas.steffen at strongswan.org
Sat Feb 12 20:20:46 CET 2011

Hello Rene,

you must open UDP port 500 for IKE and UDP port 4500 if you have
a NAT situation. In order to pass encrypted IPsec packets you
must open IP protocol 50 (ESP).



On 02/12/2011 08:15 PM, Rene Bartsch wrote:
> Hello Andreas,
> After using tcpdump I set all IPTables policies to "ACCEPT" and
> doing a flush of all rules lead to a working VPN.
> Which IPtables rules do I have to set to allow IPSec connection handshake?
> Best regards,
> Renne

Andreas Steffen                         andreas.steffen at strongswan.org
strongSwan - the Linux VPN Solution!                www.strongswan.org
Institute for Internet Technologies and Applications
University of Applied Sciences Rapperswil
CH-8640 Rapperswil (Switzerland)

More information about the Users mailing list