[ previous ] [ next ] [ threads ]
 
 From:  "Don Munyak" <don dot munyak at gmail dot com>
 To:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Fwd: [m0n0wall] LAN to LAN IPsec with Internet
 Date:  Thu, 25 May 2006 15:22:17 -0400
Hello,

for few days I have been looking for description how to create LAN to
LAN IPsec tunnel on two m0n0wall's (with Internet connection from both
LAN's). Does anyone know how to do it?

oops...forgot to post to the list.

OS: m0n0wall Firewall/Router
ver 1.22 wrap.img
http://m0n0.ch/wall
UID: admin
PW: xxxxxxxx

**************************
>> MAIN Office <<
**************************
> LAN : Enabled
Port: Eth-0 (sis0)
IP:192.168.1.0
SM :255.255.255.0
GW:192.168.1.1
DNS:192.168.1.1
WINS: none
DHCP: 192.168.1.100 -.150

> WAN : Enabled
Port: Eth-1 (sis1)
IP:71.xx.xx.119 /24
SM :255.255.255.0
GW:71.xx.xx.1
DNS:xx.10.10.11
DNS:xx.10.10.12
WINS: none
DHCP: none static wan

> DMZ : Disabled

------------------------

IPSEC:
Tunnel
Interface: WAN
Local subnet: LAN Subnet
Remote Subnet: 192.168.20.0 /24
Remote Gateway: 141.xx.xx.178
Description: Remote Office VPN

>Phase-1
Negotiation mode:aggressive
My Identifier: My IP Address
Encryption: Blowfish
Hash: SHA1
DH Key group: 2
Lifetime: 86400 seconds
Auth medthod: Pre-share key
pre-share key: xxxxxxxxxxxxxx

>Phase-2
Protocol: ESP
Encryption Algorithm: Blowfish only
Hash Algorithm: SHA1 only
PFS key group: 2
14400 seconds

**************************
>> REMOTE Office <<
**************************
> LAN : Enabled
Port: Eth-0 (sis0)
IP:192.168.2.0
SM :255.255.255.0
GW:192.168.2.1
DNS:192.168.2.1
WINS: none
DHCP: 192.168.2.100 -.150

> WAN : Enabled
Port: Eth-1 (sis1)
IP:141.xx.xx.178 /24
SM :255.255.255.0
GW:141.152.156.1
DNS:xx.10.10.11
DNS:xx.10.10.12
WINS: none
DHCP: none static wan

> DMZ : Disabled

------------------------

IPSEC:
Tunnel
Interface: WAN
Local subnet: LAN Subnet
Remote Subnet: 192.168.1.0 /24
Remote Gateway: 71.xx.xx.119
Description: MAIN Office VPN

>Phase-1
Negotiation mode:aggressive
My Identifier: My IP Address
Encryption: Blowfish
Hash: SHA1
DH Key group: 2
Lifetime: 86400 seconds
Auth medthod: Pre-share key
pre-share key: xxxxxxxxxx

>Phase-2
Protocol: ESP
Encryption Algorithm: Blowfish only
Hash Algorithm: SHA1 only
PFS key group: 2
14400 seconds