[ previous ] [ next ] [ threads ]
 
 From:  Me <d3javu1978 at yahoo dot com>
 To:  Angus Jordan <angus dot jordan at gmail dot com>, Trent the Uncatchable <trent underscore the underscore uncatchable at yahoo dot com>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] IPSEC VPN initiation...
 Date:  Mon, 22 Aug 2005 21:27:48 -0700 (PDT) 
Hi,
First off, So far i'm very impressed by the features
and quality of m0n0wall.!!

I'm still on my testing stages but I ran in to the
same problem with a zywall 70 and my m0n0wall vpn
tunnel.

I simply forgot to create a firewall rule to allow
incomming traffic from our corporate office IP to the
m0n0wall to pass ESP and HA traffic, of course I have
many other things i'm testing so i just let all
traffic from our corporate IP to my m0n0wall.

Hope this helps


Jose Lima

(not the baseball player!!)


--- Angus Jordan <angus dot jordan at gmail dot com> wrote:

> Correct me if I'm wrong, but this sounds like you've
> setup the tunnel on the 
> Pix as a dynamic tunnel. That means that the remote
> side MUST initiate the 
> connection, as the Pix does not know if the remote's
> IP address has changed. 
> I don't have a pix to play with at the moment, but I
> think if you set it to 
> be a static VPN you may have better luck.
> 
> Hope that is of some help...
> 
> Angus
> 
> On 8/22/05, Trent the Uncatchable
> <trent underscore the underscore uncatchable at yahoo dot com> wrote:
> > 
> > Hi All,
> > 
> > I'm certain that this has been discussed before,
> but I
> > can't generate the correct words to search for it.
> > 
> > Simple problem is:
> > 
> > Corporate office has a Pix firewall.
> > Site has a M0n0wall Soekris 4801.
> > I can bring the IPSEC connection up by pinging the
> > corporate office from the Site, but I can't bring
> the
> > IPSEC connection up by pinging the site from the
> > corporate office. :-(
> > 
> > The VPN tunnels work great when they are up, but
> it's
> > that initiation that's the problem.
> > 
> > Can someone please point me in the direction of a
> > solution?
> > 
> > Thanks so much...
> > 
> > __________________________________________________
> > Do You Yahoo!?
> > Tired of spam? Yahoo! Mail has the best spam
> protection around
> > http://mail.yahoo.com
> > 
> >
>
---------------------------------------------------------------------
> > To unsubscribe, e-mail:
> m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> > For additional commands, e-mail:
> m0n0wall dash help at lists dot m0n0 dot ch
> > 
> >
> 



		
____________________________________________________
Start your day with Yahoo! - make it your home page 
http://www.yahoo.com/r/hs