|
||||||||||
On Mon, 14 Mar 2005 16:41:51 -0500, DLStrout <dstrout at maine dot rr dot com> wrote: > All, > > Are there any known issues w/ having a "block<>any<>any<>any" (or > explicit block all) on the WAN and LAN interfaces (of both m0n0s) when > trying to bring up a m0n0wall2m0n0wall - site2site IPsec VPN tunnel. > You'll need some traffic attempting to go over the VPN before it'll come up, and from the sounds of it you're dropping all of said traffic, so yes it probably never will come up. Traffic initiated by m0n0wall won't bring it up either for the same reason as this. http://m0n0.ch/wall/docbook/faq-snmpovervpn.html -Chris |