[ previous ] [ next ] [ threads ]
 From:  Krzysztof Ostrowski <kostrowski at orix dot pl>
 To:  m0n0wall at lists dot m0n0 dot ch
 Subject:  PD: Re: [m0n0wall] VPN dosn't accept connections.
 Date:  Fri, 21 Nov 2003 13:52:51 +0100
Thanks for fast answer
I've start again

1.I'm connecting two networks via VPN tunnel.How can I check VPN ? i'm 
using ping. Syslogd will show something ?
2. In Freebsd i can list network interfaces (ifconfig) and i't shows me 
gif0. There is also in routing table.

ifconfig :
gif0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1280
        tunnel inet xxxxx --> xxxxxxxxxxx
        inet --> netmask 0xffffff00

netstat -rn
192.168.15       UGSc        0        0   gif0       UH          1      170   gif0

In mono i can't find it. Why

Summary : i can't check VPN works
Krzysztof Ostrowski
IT Administrator
kostrowski at orix dot pl

Manuel Kasper <mk at neon1 dot net>
2003-11-21 13:20
        Do:     Krzysztof Ostrowski <kostrowski at orix dot pl>
        DW:     m0n0wall at lists dot m0n0 dot ch
        Temat:  Re: [m0n0wall] VPN dosn't accept connections.

On 21.11.2003, at 13:09, Krzysztof Ostrowski wrote:

> I've setup VPN and it dosn't accept connections. In log is nothing, 
> olny
> starting raccon, nothing about accepting connections

Are you sure you understand how IPsec with dynamic keying works? racoon 
is the IKE daemon that handles the key exchange. It's the only userland 
program that plays a part of IPsec VPN - the rest is handled in the 

> Active Internet connections (including servers)
> Proto Recv-Q Send-Q  Local Address          Foreign Address 
> (state)
> tcp4       0      0  *.443                  *.* 
> udp4       0      0  *.2862                 *.*
> udp4       0      0       *.*
> udp4       0      0      *.*
> udp4       0      0          *.*

There you go - racoon is obviously there, listening on UDP port 500 

> i'm trying connnect from another mono and from freebsd and it dosn't 
> work

You have to be more specific. Really. How did you configure the other 
m0n0wall (what about the config.xml content from both of them)? Also, 
note that the IPsec tunnel is only established when you actually try to 
reach the other network - not already when you hit the "Apply changes" 

- Manuel

To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch


This email and any files transmitted with it are confidential and
intended solely for the use of the individual or entity to whom they
are addressed.

ORIX do not accept liability for statements made which are clearly the sender's own and not that
made on behalf of ORIX.

This footnote also confirms that this email message has been swept
for the presence of computer viruses.