[ previous ] [ next ] [ threads ]
 
 From:  Raphael Maunier <raphael at maunier dot net>
 To:  Abdul Aziz <aaziz at justbooking dot com>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] vpn problem(safenet)
 Date:  Fri, 11 Mar 2005 10:21:35 +0100
Hi Aziz,

You can't connect to a monowall with an ipsec client without a public ip 
address. This have already been asked (and tested).
You can only use pptp with a nated cnx.

Regards,


Abdul Aziz wrote:

>
>
>
>
>Hi All,
>
>
>
>
>I have created a VPN
>
>
>
>
>
>
>lan# 192.168.1.188
>
>
>lan port attached 1 pc IP#192.168.1.20 & GATEWAY#192.168.1.188
>
>
>wan# 200.115.10.51
>
>
>wan port attached 1 pc as a VPN client IP#200.115.10.1 &
>GATEWAY#200.115.10.51
>
>
>
>
>I wish to communicate vpn client my lan network,i'm using safenet vpn client
>on win2000
>
>
>safenet settings:
>
>
>
>
>1)secure checked
>
>
>2)Remote party identity & addressing
>
>
>
>
>IP ADDRESS#192.168.1.21
>
>
>PROTOCOL#ALL
>
>
>CHECKED CONNECT USING # SECURE G/W TUNNEL
>
>
>ID TYPE#ANY
>
>
>G/W IP ADDRESS#200.115.10.51
>
>
>*********************
>
>
>My Identity#
>
>
>Preshared Key # 12345678901234567890
>
>
>select certificate # None
>
>
>ID Type # Email Address/aaziz at justbooking dot com
>
>
>Virtual Adopter# Prefered
>
>
>Internal network IP # 192.168.1.21
>
>
>Inernet Interface # Any
>
>
>IP # Any
>
>
>*********************
>
>
>Authentication Method
>
>
>Phase#1
>
>
>
>
>1)Pre shared key
>
>
>2)Tripple DES
>
>
>3)SHA-1
>
>
>4)SA Life#Unspecified
>
>
>5)Key Group # 2
>
>
>----------------
>
>
>Phase#2
>
>
>
>
>1)SA Life#Unspecified
>
>
>2)compression#None
>
>
>3)ESP
>
>
>  TrippleDES,SHA-1,Tunnel
>
>
>
>
>*****m0n0wall settings*****
>
>
>
>
>Rule:
>
>
>***LAN Interface***
>
>
>Proto # *
>
>
>Source # LAN net
>
>
>Port # *
>
>
>Destination # *
>
>
>Port # *
>
>
>Description # Default LAN -> any 
>
>
>-------------------------------
>
>
>***WAN Interface***
>
>
>
>
>IP# 200.115.10.51/24
>
>
>G/W#200.115.10.1
>
>
>
>
>Proto # *
>
>
>Source # LAN net
>
>
>Port # *
>
>
>Destination # 200.115.10.1
>
>
>Port # *
>
>
>Description # xyz
>
>
>-------------------------------
>
>
>***IPSec***
>
>
>1)vpn IPSec,Checked Enable IPSec
>
>
>
>
>2)Allow mobile client checked
>
>
>
>
>Phase#1
>
>
>
>
>1)Mode # Aggressive
>
>
>2)Identifier # my ip address
>
>
>3)3DES
>
>
>4)SHA-1
>
>
>5)DHKey Group # 2
>
>
>----------------
>
>
>Phase#2
>
>
>
>
>1)ESP
>
>
>2)3DES,SHA-1
>
>
>3)PFS key group # 2
>
>
>
>
>Pre-shared keys
>
>
>
>
>Identifier # aaziz at justbooking dot com
>
>
>Pre-shared key # 12345678901234567890
>
>
>
>
>
>
>plz tell me how can we interact vnp client to my lan network, as soon as
>possible.
>
>
>
>
>Regards:
>
>
>Abdul Aziz
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>---------------------------------------------------------------------
>To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
>For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>
>  
>