[ previous ] [ next ] [ threads ]
 
 From:  "Barry Mather" <barry dot mather at dorecentres dot com dot au>
 To:  <m0n0wall at lists dot m0n0 dot ch>
 Subject:  RE: [m0n0wall] IPSEC & Draytek FW
 Date:  Tue, 8 Mar 2005 09:11:09 +1100 
Hi

On the draytek end using ....

f/w v 2.5.2_AU

lan to lan profile

ipsec
the dial number /ip being the remote m0n0
pre shared key same as m0n0, 3des with auth (click advance) main mode,
3des_md_G2

dialout

ipsec
specify the remote m0n0 ip 3des ticked
my wan ip (local public ip)
remote gateway (remote m0n0)
remote net (remote priv ip)
remote net mask (remote net mask)
disable rip


m0n0wall
v b3

local subnet (lan)
remote gateway - remote draytek pub ip)
negotiation mode : main
my id (my ip addr)
3des
Md5
DH key 2
Pre hared key

Esp
3des
Md5
Pfs keygroup : off



All lifetimes set to 28800

That's it

It works

Hope this helps

cheers

-----Original Message-----
From: Jeroen Geusebroek [mailto:j dot geusebroek at gmail dot com] 
Sent: Monday, 7 March 2005 8:23 PM
To: Barry Mather
Cc: m0n0wall at lists dot m0n0 dot ch
Subject: Re: [m0n0wall] IPSEC & Draytek FW

On Mon, 7 Mar 2005 11:29:58 +1100, Barry Mather
<barry dot mather at dorecentres dot com dot au> wrote:

> I have several draytek 2600x firewalls connecting into a m0n0 with no
> probs at all ....
> 
> Standard setups on both, no doing any special at all ...

That sounds good, but what kind of setup are you using? 3des/MD5?
What draytek firmware and m0nowall version are you using?

Thanks,

Jeroen



Dore Achievement Centres (Pty) Ltd - Hotline: 1300 55 77 11

www.dorecentres.com.au

This e-mail message may contain confidential or privileged information 
and is intended solely for the individual to whom it is addressed. If you 
are not the named addressee you should not disseminate, distribute or 
copy this e-mail. If you have received it in error please notify us 
immediately by telephoning 1300 55 77 11 and destroy this e-mail and 
any attachments. E-mail transmission cannot be guaranteed to be 
secure or error-free as information could be intercepted, corrupted, lost, 
destroyed, arrive late or incomplete, or contain viruses. The sender 
therefore does not accept liability for any errors or omissions in the 
contents of this message, which arise as a result of e-mail transmission. 
The content of this email is not necessarily that of the Dore Acievement 
Centres unless otherwise specified.  This email was scanned for possible 
viruses and was sent on 8/3/2005 by barry dot mather at dorecentres dot com dot au to m0n0wall at lists dot m0n0 dot ch