|
||||||||
Thank you for your reply. I don't think PIX will support PPTP. Also, if upstream monowall provides NAT, will IPSec be able to go through NAT and terminate to downstream PIX? One more question. If I configure OPT interface on upstream monowall to be in bridge mode with WAN interface, would I need one public IP address for monowall WAN interface, and one for PIX? Alex -----Original Message----- From: Lee Sharp [mailto:leesharp at hal dash pc dot org] Sent: Monday, April 17, 2006 1:30 AM To: m0n0wall at lists dot m0n0 dot ch Subject: Re: [m0n0wall] MonoWall and PIX From: "Alex Randjelovic" <alexr at atnetplus dot com> > I have interesting challenge. Our company has cable Internet line with > single static IP address. I need to setup monowall connected to the > cable line, and after monowall PIX 501 that will terminate VPN > connections and provide Internet access for LAN users. Between monowall > and PIX there will be DMZ, providing wireless clients with Internet > access (via wireless AP). Unfortunately, company requirement is to > terminate VPN connections on the PIX, not monowall. > To be able to setup PIX as VPN device, I have to pass all traffic from > monowall to PIX. I don't think bridge mode would work, because there is > only 1 public IP address. Under VPN -> PPTP, check "Redirect incoming PPTP connections to:" and it works. Unless you are under IPsec, and I haven't tried that one. Lee --------------------------------------------------------------------- To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch |