Hi again eh,
> Curious, do you have inbound rules also
Not for the router to router tunnels but only because I control both
ends. If I didn't control one end then I would. Under the interface
the tunnel is connected to, block the ports you don't want coming
through and under source select network and type in the subnet of the
remote network. I haven't played with roaming users yet so I'm not
> and can you ?
Assuming you mean for the tunnel itself, allowing ESP etc.. I think
that is done when configuring the tunnel in m0n0wall. The only time
you would open something for ESP etc.. is when you where passing the
tunnel through m0n0wall instead of using its server.