First off, So far i'm very impressed by the features
and quality of m0n0wall.!!
I'm still on my testing stages but I ran in to the
same problem with a zywall 70 and my m0n0wall vpn
I simply forgot to create a firewall rule to allow
incomming traffic from our corporate office IP to the
m0n0wall to pass ESP and HA traffic, of course I have
many other things i'm testing so i just let all
traffic from our corporate IP to my m0n0wall.
Hope this helps
(not the baseball player!!)
--- Angus Jordan <angus dot jordan at gmail dot com> wrote:
> Correct me if I'm wrong, but this sounds like you've
> setup the tunnel on the
> Pix as a dynamic tunnel. That means that the remote
> side MUST initiate the
> connection, as the Pix does not know if the remote's
> IP address has changed.
> I don't have a pix to play with at the moment, but I
> think if you set it to
> be a static VPN you may have better luck.
> Hope that is of some help...
> On 8/22/05, Trent the Uncatchable
> <trent underscore the underscore uncatchable at yahoo dot com> wrote:
> > Hi All,
> > I'm certain that this has been discussed before,
> but I
> > can't generate the correct words to search for it.
> > Simple problem is:
> > Corporate office has a Pix firewall.
> > Site has a M0n0wall Soekris 4801.
> > I can bring the IPSEC connection up by pinging the
> > corporate office from the Site, but I can't bring
> > IPSEC connection up by pinging the site from the
> > corporate office. :-(
> > The VPN tunnels work great when they are up, but
> > that initiation that's the problem.
> > Can someone please point me in the direction of a
> > solution?
> > Thanks so much...
> > __________________________________________________
> > Do You Yahoo!?
> > Tired of spam? Yahoo! Mail has the best spam
> protection around
> > http://mail.yahoo.com
> > To unsubscribe, e-mail:
> m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> > For additional commands, e-mail:
> m0n0wall dash help at lists dot m0n0 dot ch
Start your day with Yahoo! - make it your home page