[ previous ] [ next ] [ threads ]
 
 From:  Zach Lowry <zach at zachlowry dot net>
 To:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Problem with IPSec routing w/ PPPoE and Routed Block
 Date:  Thu, 24 Mar 2005 01:25:02 -0600
-----BEGIN PGP SIGNED MESSAGE-----

Hello!

I have a routed block of 5 IPs from my DSL provider, which I access
through a PPPoE COnnection. I want my LAN to be NATed behind one of
those IPs, so I have it listed in "Server IPs" and "Advanced Outbound
NAT" enabled. This seems to work fine, causing all traffic from my local
lan to come from that IP.

However, now I am trying to set up an IPsec VPN to a Cisco PIX.
Apparently, when the racoon daemon sends the authentication packets,
these packets appear to originate from my "dynamic" IP from the PPPoE
connection, not the static IP I have set in Server IPs. The
authentication with the Cisco fails, due to the fact that the
originating IP does not match the IP used for the identity. How can I
get around this?

Thanks!

- --
Zach Lowry
MTSU, Murfreesboro, TN
zach at zachlowry dot net
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iQCVAwUBQkJrTklgWWUxLyqhAQGBIwP9FW3aUT16dK7CCVlN8NYRXZGAYkQ44ddu
nd0sflqBnemwNlCbeKoQbxeR8eoi21Dq2D+i/ODBSndqkBcQHKSQkfvtUhNto/C3
cUXcv0mIg7cKHRxTVWW8rDZ68Dcurv36ScbEVF8Yfzz/Lk5HerCDY3Au0Bbr7uXn
7C5SLwwWgSo=
=rKE/
-----END PGP SIGNATURE-----