[ previous ] [ next ] [ threads ]
 
 From:  Jesse Guardiani <jesse at wingnet dot net>
 To:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: Re: Public IP's on OPT
 Date:  Wed, 08 Dec 2004 13:58:23 -0500
Kev Latimer wrote:

> I'm even making an arse of replying to emails now, this really isn't a
> good day!
> 
> As should have said:
> 
> Josh - I didn't set any outbound NAT entries, OPT2 itself should (I
> think) only be seen but the m0n0 as it is purely to be an IPSEC
> endpoint, all the LAN traffic being routed up the tunnel.  That said, I
> did exactly as you explained below and still no luck.  Running 1.11 on a
> CF card on an Epia PD1000.
> 
> Jesse - how did you get your OPT interface to respond to pings?  If I
> can get that bit right I think I'll stand a chance of kludging the rest
> together :)

Action....: Pass
Interface.: WAN
Protocol..: ICMP
Source....: Any
Source Rng: Any -> Any
Dest......: My WAN IP Address
Dest Rng..: Any -> Any

I also have a rule allowing UDP 33435 -> 33524 to the same WAN IP. This
allows traceroutes.

-- 
Jesse Guardiani, Systems Administrator
WingNET Internet Services,
P.O. Box 2605 // Cleveland, TN 37320-2605
423-559-LINK (v)  423-559-5145 (f)
http://www.wingnet.net