From: kawk@20040403.ixo.de   
      
   Hi   
      
   I'm having trouble utilizing an ESP tunnel from a single Linux host to a   
   corporate network;   
      
   * Linux(FreeS/WAN 1.98b) with static, private IP   
   * SMC 2804WBR, with VPN passthrough, dynamic IP   
   ...   
   * ZyWALL70 with static, public IP   
   * corporate network with static, private IP on ZyWALL LAN   
      
   ISAKMP and IPsec SA are quickly established, and transmission from my host   
   towards the corporate network reach the ZyWALL as ESP packets. But then nothing   
   beside an ACCESS FORWARD note (ESP, W to W/ZW) in the ZyWALL log can be   
   seen: no packets reach the LAN behind the ZyWALL and there's no reply of   
   any kind (all firewall rules have logging enabled).   
      
   Enabling "ipsec debug..." in ZyNOS CI doesn't yet help because its output   
   carries characters that cause my ssh connection to the ZyWALL to be   
   dropped...   
      
   The "Local policy" for the IPsec rule equals its LAN subnet parameters.   
   The "Remote policy" is "Single address, 0.0.0.0", and Remote Gateway is   
   0.0.0.0 as well. I doubt that there is anything wrong with the rule, as   
   the IPsec SA reportedly is established without problems.   
      
   Thanks for your help + ideas in advance..   
   Kolja   
      
   --- SoupGate-Win32 v1.05   
    * Origin: you cannot sedate... all the things you hate (1:229/2)