    # Set up chains which allow us to capture IPSEC connections
    /sbin/iptables --new-chain InputAllowIPSEC
    /sbin/iptables --append InputAllowIPSEC -i ipsec+ -j ACCEPT 
    /sbin/iptables --append INPUT --jump InputAllowIPSEC
    /sbin/iptables --new-chain ForwardAllowIPSEC
    /sbin/iptables --append FORWARD --jump ForwardAllowIPSEC

