[ previous ] [ next ] [ threads ]
 From:  Louis Koutsovitis <louis dot koutsovitis at senecac dot on dot ca>
 To:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] Private site to site IPSEC VPN
 Date:  Sat, 05 Feb 2005 20:14:13 -0500
I hoped I was missing a configuration setting. Would OPENVPN have the 
features to accomplish a point to point link? I know that Sonicwall has 
some hardware that is advertised to have a configurable default route 
for Internet traffic. I was hoping to use Monowall, it is a great tool 
and the price is right!

Thanks again

Vincent Fleuranceau wrote:

>> Hello all
>> Is it possible to create a private site to site IPSEC VPN over the 
>> internet between two points with Monowall. We are trying to route all 
>> packets from a small branch office over a VPN on the internet to a 
>> main campus regardless of the destination, emulating a point to point 
>> link. We are using DSL link for the office and a dedicated Internet 
>> connection for the main campus. Using 1.2b3 we created a tunnel 
>> between the two locations but any packets from the office destined 
>> for the Internet are not making it to the campus Monowall server, 
>> they are hitting the office Monowall server and then being routed 
>> directly to and from the internet. Packets to and from the main 
>> campus do travel over the IPSEC tunnel.
>> Is this possible with Monowall?
> Being able to bind your default route to a dedicated interface would
> help, but unfortunately IPsec implementation in m0n0wall does not use
> such a special interface... (NOTE: you may have the same limitation with
> other IPsec implementations, not only with racoon/m0n0wall)
> In conclusion, only traffic destined to the remote LAN can be routed
> through the tunnel.
> Cheers,
> -- Vincent
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch

<http://www.senecac.on.ca/> 	Louis Koutsovitis
Chief Technology Officer
Seneca College of Applied Arts & Technology
Information Technology  & Telecommunications Services 
416  491-5050 # 2125

seneca_logo.gif (1.3 KB, image/gif)