I have IPSec running on my FreeBSD gateway. It works fine using NAT
without a firewall. I'd like to use my firewall but haven't figured out
the entries I need to enable the following:
- Allowing UDP on port 500 (isakmp key management)
- Allowing protocol 50 to pass (IPSec payload encryption)
- Allowing protocol 51 to pass (IPSec authentication headers)
What's the syntax when using ipfw to enable the above? Thanks.