Re: [m0n0wall] IPsec, PPTP, and routing

From:	Chris Buechler <cbuechler at gmail dot com>
To:	Richard Parvass <Richard dot Parvass at aaland dot co dot uk>
Cc:	m0n0wall at lists dot m0n0 dot ch
Subject:	Re: [m0n0wall] IPsec, PPTP, and routing
Date:	Fri, 3 Jun 2005 11:24:26 -0400

On 6/3/05, Richard Parvass <Richard dot Parvass at aaland dot co dot uk> wrote:
> Hi all
> 
> I've got a perplexing issue with a m0n0.
> 
> Here's a network diagram:
> http://194.217.113.25:8080/issue.jpg
> 
> All communications throughout the network work perfectly except:
> ComputerA cannot connect to ComputerB.
> 
> The "block out log quick from any to any" rule traps communications from
> ComputerA to ComputerB.
> 
> ComputerB is on an IP within the LANB's subnet using the m0n0wall's PPTP
> server.
> 
> Can anyone suggest how to get around this?
> 

That's a known unintended consequence of the rule design that was
discovered a few months ago in the same type of setup.  I believe it
was fixed in one of the 1.2 beta versions.  Try 1.2b8 and see if it
works.

-Chris