When I am connected via VPN (T2TP IPSec Cert) from my Android device, I see the following traffic being blocked. Please help me with firewall rules to allow this traffic.
In the following line, 25.34.91.203 is the IP address of phone's public network which is not static, 192.168.100.27 is the IP address of a laptop running VNC. The VNC session is established just fine. When I disconnect the session, the disconnection process hangs and the I see a bunch of lines like below repeated in the network live log.
11:10:27 Default DROP L2TP 25.34.91.203:35853→192.168.100.27:5900 [ACK] len=52 ttl=63 tos=0x00 srcmac=0:c:29:29:e9:32
The following line is seen repeatedly in network live log while I am connected via VPN. Port 5228 (TCP and UDP) is required to access Google Play Store. Address 25.34.91.203 is my phone's public IP, 173.194.76.188 is Google's server. These IP addresses are not static.
11:11:58 Default DROP L2TP 25.34.91.203:60955→173.194.76.188:5228 [ACK PSH] len=185 ttl=63 tos=0x00 srcmac=0:c:29:29:e9:3c
The following line is seen repeatedly as the phone tries to access Gmail account when connected via VPN. Address 25.34.91.203 is phone's public IP, 74.125.142.109 is Google's mail server (both addresses are dynamic).
11:13:46 Default DROP L2TP 25.34.91.203:49154→74.125.142.109:993 [ACK] len=52 ttl=63 tos=0x00 srcmac=0:c:29:29:e9:3c
I have tried many things but due to limited experience, I could not create a firewall rule to allow access to above. Any help would be appreciated.
Thanks...
Arun Gupta
In the following line, 25.34.91.203 is the IP address of phone's public network which is not static, 192.168.100.27 is the IP address of a laptop running VNC. The VNC session is established just fine. When I disconnect the session, the disconnection process hangs and the I see a bunch of lines like below repeated in the network live log.
11:10:27 Default DROP L2TP 25.34.91.203:35853→192.168.100.27:5900 [ACK] len=52 ttl=63 tos=0x00 srcmac=0:c:29:29:e9:32
The following line is seen repeatedly in network live log while I am connected via VPN. Port 5228 (TCP and UDP) is required to access Google Play Store. Address 25.34.91.203 is my phone's public IP, 173.194.76.188 is Google's server. These IP addresses are not static.
11:11:58 Default DROP L2TP 25.34.91.203:60955→173.194.76.188:5228 [ACK PSH] len=185 ttl=63 tos=0x00 srcmac=0:c:29:29:e9:3c
The following line is seen repeatedly as the phone tries to access Gmail account when connected via VPN. Address 25.34.91.203 is phone's public IP, 74.125.142.109 is Google's mail server (both addresses are dynamic).
11:13:46 Default DROP L2TP 25.34.91.203:49154→74.125.142.109:993 [ACK] len=52 ttl=63 tos=0x00 srcmac=0:c:29:29:e9:3c
I have tried many things but due to limited experience, I could not create a firewall rule to allow access to above. Any help would be appreciated.
Thanks...
Arun Gupta