[ previous ] [ next ] [ threads ]
 From:  Jeff Buehler <jeff at buehlertech dot com>
 To:  Kristian Shaw <monowall at wealdclose dot co dot uk>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] outlook -> exchange problem
 Date:  Thu, 09 Feb 2006 17:51:37 -0800
Hi Kris -

I have downloaded and installed the version at the URL below on two of 
my three LAN routers, but a "ping dest-vpn -l 2048" still times out 
between the two updated m0n0wall routers.  The AH protocol is still 
active do I need ESP, or to change something else?


Kristian Shaw wrote:

> Hello Jeff, Philippe,
> I have created a version of m0n0wall that just corrects the fragmented 
> packet issue and you can download it from the link below. I've also 
> done an image for the net48xx but I have no way of testing it.
> http://www.klshaw.co.uk/m0n0wall/
> Please don't make this link public - it's not hosted on a very fast 
> connection.
> Regards,
> Kris.
> ----- Original Message ----- From: "Philippe Lang" 
> <philippe dot lang at attiksystem dot ch>
> To: "Jeff Buehler" <jeff at buehlertech dot com>; <m0n0wall at lists dot m0n0 dot ch>
> Sent: Thursday, February 09, 2006 9:44 AM
> Subject: RE: [m0n0wall] outlook -> exchange problem
> Hi,
> Have you tried using a sniffer on the network? There are issues with
> fragmented packets and monowall inside VPNs, which can create problems 
> for
> example accessing Active Directory from a remote location. I wouldn't be
> surprised if you had this kind of problem too.
> Kris Shaw has just release a monowall image that corrects that: have a 
> look
> at his message of yersterday "Version of m0n0wall that filters VPN
> traffic/Allows fragments".
> Also, look at my two messages from 06.02.06 "Fragmented packets, VPN  &
> Windows 2000 domain problem".
> Hope this helps. Feedback is welcome...
> Philippe