[ previous ] [ next ] [ threads ]
 
 From:  "bob bobson" <athletesfoot80 at hotmail dot com>
 To:  m0n0wall at lists dot m0n0 dot ch
 Subject:  does anybody have this config?
 Date:  Mon, 04 Apr 2005 17:01:03 +0000 
Can i do this with monowall's?

I am having problems doing static routes between the opt interfaces of the
monowall's do i need to put the opt's on their own little 192.168? what
routes would i need on what interfaces and am i missing some firewall rules? 
i can never ping the other monowall's opt ip address. Would it then be 
possible to restric specific ips
from the 172.16.1 to the 172.20 network over these opt interfaces.

Also would it be possible to add another opt interface on the second
monowall just for a DMZ that i can restrict to only port 80 and 445 and only
access them from the 172.20 and externally.


IPSEC		   IPSEC
VPN Client	  VPN Client
|		        |
|		        |
adsl router	  adsl router
|		        |
pub ip		   pub ip
|		        |
mono		   mono
opt1----------------opt1
lan		      opt2---DMZ (pub ip's)
|		       lan
|		        |
|		        |
PC's		      PC's
172.16.1.0/16	172.20.0.0/24

As ever Thanks in advance.

Toby Seed

_________________________________________________________________
Express yourself instantly with MSN Messenger! Download today it's FREE! 
http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/