Hi,
I would like to found more precision on the packet flow regarding the IPSec Policy and the Firewall.
I have to connect many remote sites and we have deploy 3 CCR-1036 and 2 RB2011; all of them connected to a master CCR.
The problem is that the master CCR do some SNAT and event I try to mark packets using the MANGLE PREROUTING to the destination, I didn’t see them in the LOG.
So I’m a bit lost cause event I mark my packet and type to log the packet into the NAT table, I didn’t see anything.
Can you give me more details?
Thanks