Ufw rules for ipsec aws vpc

ok we should not touch miab host config but i just need mine to let both of my north virginia and ohio vpc local ips to passthrough as an ipsec gate !

i add rules in ufw to allow everything coming from both vpc local ips but i can still see in the log communications between two hosts being blocked !

any ideas on what should be done ?
yes, i’m a little cheap and i would like to avoid lunching another vm just for that ! :slight_smile:

Which log, being blocked by what? are you certain that AWS isn’t the issue here?

logs from ufw talking about this local ip address (ohio vpc) on this port try to send to this local ip address (north virginia vpc) on this port are blocked even if both vpc local ip range are fully allowed in the tables.

it’s not miab ip they just passthrough !