[ previous ] [ next ] [ threads ]
 
 From:  Karsten dot Thomsen at smg dot dk
 To:  Chris Buechler <cbuechler at gmail dot com>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] VPN tunnel between two monowalls
 Date:  Mon, 25 Jul 2005 19:51:56 +0200 
Hi Chris

I'm sorry that I didn't just listen to your first mail, I don't think that I
need to tell you that it works now after adding my home LAN to my work default
gateway.

I have another question that I also need help to, I have a VPN connection at
work to a company in Norway, and there is a server that I'll like to access,
The route is added to the default gateway and I can access the server form work,
but I cant from home.

My ip at work is 172.22.200.x/24 and the server in Norway is 172.20.20.x, I have
a route at my default gateway that routes 172.20.20.0/24 to 172.22.200.2 (that
is the cisco VPN box) but I can't ping the 172.22.200.2 from home.

Any idea ?

Regards
Karsten





Chris Buechler <cbuechler at gmail dot com> on 23-07-2005 23:12:44

Please respond to Chris Buechler <cbuechler at gmail dot com>

To:
cc:   m0n0wall at lists dot m0n0 dot ch (bcc: Karsten Thomsen/SMG)
Subject:  Re: [m0n0wall] VPN tunnel between two monowalls



On 7/23/05, Brian <mono at ricerage dot org> wrote:
> > Hi
> >
> > If I make a tracert to a IP on my work LAN for Home LAN it stops at my
> > Home
> > monowall address
> > Then It don't help to add my home subnet to my default gateway at work
> > does it ?
> >
> > / Karsten
>
>
> Hi Karsten,
>
> I believe I understand the source of the confusion. Please refer to the
> following:
>
>
http://www.amazon.com/exec/obidos/tg/detail/-/0764516779/qid=1122152609/sr=8-4/ref=pd_bbs_4/102-6133392-4577741?v=glance&s=books&n=507846

>

haha

In other words, ADD THE ROUTE AND STOP QUESTIONING WHAT I'M TELLING
YOU.  This is basic IP routing stuff, of course you need the route.
Your servers don't magically know that your subnet goes through
something other than their default gateway, and their default gateway
router doesn't know that your subnet isn't through its default
gateway, i.e. on the internet.  Add it, it will work.  The end.

a normal traceroute across a working VPN has the remote m0n0wall as a
missing hop.

traceroute to 10.0.X.33 (10.0.X.33), 64 hops max, 40 byte packets
 1  10.0.Y.1 (10.0.Y.1)  1.154 ms  1.057 ms  1.011 ms
 2  * * *
 3  10.0.X.33 (10.0.X.33)  51.182 ms  52.565 ms  45.999 ms

-Chris

---------------------------------------------------------------------
To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch