[ previous ] [ next ] [ threads ]
 
 From:  "Moreno Primo powered by GMAIL" <moreno dot primo at gmail dot com>
 To:  "'Joe Lagreca'" <lagreca at gmail dot com>, <m0n0wall at lists dot m0n0 dot ch>
 Subject:  R: [m0n0wall] Possible to do one way IPsec?
 Date:  Wed, 12 Apr 2006 09:10:14 +0200
You cannot make inbound rules for vpn connection with the Monowall. (freebsd
limitation)
You have 2 ways: 1) define outgoing rules into clients netsceeen's. 2) use 2
monowall on you side (one behind the other)

Bye
Moreno 

-----Messaggio originale-----
Da: Joe Lagreca [mailto:lagreca at gmail dot com] 
Inviato: Mittwoch, 12. April 2006 06:55
A: m0n0wall at lists dot m0n0 dot ch
Oggetto: [m0n0wall] Possible to do one way IPsec?

Is it possible to create a one way IPsec VPN?

For example, I have created a IPsec VPN from my office m0n0wall, to one of
my clients Netscreen's.  Is there some way I can set it up so that I can
access resources on their LAN, but not let them have them have access to my
LAN?

I have tried creating a few rules to try and prevent them having access, but
haven't had any success.

Has anyone tried this before?  Is this even a possibility?

---------------------------------------------------------------------
To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch