[ previous ] [ next ] [ threads ]
 From:  Dario Rigolin <drigolin at iol dot it>
 To:  m0n0wall at lists dot m0n0 dot ch
 Subject:  IPSEC on non WAN interface
 Date:  Thu, 30 Dec 2004 18:35:52 +0100
I'm setting up a IPSEC tunnel between m0n0wall and a PIX.
The PIX is on a network reacheable from a MY-LAN interface (Not the standard 
WAN). I setted up the tunnel and into the Interface field I  selected MY-LAN.

I added a rule to accept packets coming from the other endpoint to the 
firewall ip address on MY-LAN for UDP port 500 (ESP authentication).

The problem I'm esperiencing is that m0n0wall still drop packets directed to 
m0n0wall ip address on MY-LAN interface coming from end point. Why?
Diagnostic log say:

X|20:30:07.603797|MY-LAN||port 500||port 500|UDP

Any hints?

Dario Rigolin
Mobile: +39 347 7232652