[ previous ] [ next ] [ threads ]
 
 From:  Bill Hamel <billh at bugs dot hamel dot net>
 To:  Rick Preston <rickjpreston at gmail dot com>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] IpSec Tunnel Sanity check please
 Date:  Sat, 20 Nov 2004 16:20:34 -0500
Hi again again for sure . . .

OK, I should be Ok now, thanks for the sanity check. 

Heh... I guess thats what I get for thinking to much :)

Thanks again
-b

Quoting Rick Preston <rickjpreston at gmail dot com>:

> Hi again eh,
> 
> > Curious, do you have inbound rules also
> 
> Not for the router to router tunnels but only because I control both
> ends.  If I didn't control one end then I would.  Under the interface
> the tunnel is connected to, block the ports you don't want coming
> through and under source select network and type in the subnet of the
> remote network.  I haven't played with roaming users yet so I'm not
> sure there.
> 
> > and can you ?
> 
> Assuming you mean for the tunnel itself, allowing ESP etc.. I think
> that is done when configuring the tunnel in m0n0wall.  The only time
> you would open something for ESP etc.. is when you where passing the
> tunnel through m0n0wall instead of using its server.
> 
> have fun,
> 
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
> 
> 
> -- 
> This message has been scanned for viruses and
> dangerous content by the Bugs.Hamel.Net MailScanner, 
> and appears to be clean.
> 
> 




----------------------------------------------------------------
This message was sent using IMP, the Internet Messaging Program.

-- 
This message has been scanned for viruses and
dangerous content by the Bugs.Hamel.Net MailScanner, 
and appears to be clean.