Hello all, I watched a strange behaviour on SuSE 8.0, when using a server with two ethernet cards and running FreeSWAN 1.98b (ipsec) The setup is as follows: - eth0 is external, with ipsec0 bound to it ("real" IP address) - eth1 is internal LAN, private address of 192.168.x.y form - no "special" firewall setup, no NAT, - any traffic is accepted (still testing ...) - routing is effective (ip_forward = 1) If I try to telnet to this machine from internal, I get a network timeout, although I see a connection attempt in iptraf on eth1. But I can connect from the ipsec-tunnel from outside to internal ip-address on telnet port without any problem ... ! (roadwarrior-laptop with dynamic ip) If I shutdown ipsec0, everything from internal works as expected. Is the traffic from internal routed to ipsec0 and only to that interface ? Any help is appreciated ! Regards from Rosbach/Germany, Philipp Rusch