[ previous ] [ next ] [ threads ]
 
 From:  John Sommatino <john at wombo dot com>
 To:  monowall <m0n0wall at lists dot m0n0 dot ch>
 Cc:  Kristian Shaw <monowall at wealdclose dot co dot uk>
 Subject:  Re: [m0n0wall] Multiple IPsec tunnels and routing between them
 Date:  Sat, 4 Nov 2006 21:10:14 -0800 
Thanks.

I set them up and it works!

Two thing that I noticed.

1) I had to set the shared keys different on each of the tunnels.
2) I had to reboot the m0n0walls to establish the connections.

j

On Nov 4, 2006, at 3:16 AM, Kristian Shaw wrote:

> Hello,
>
> Its OK to create a mesh using IPSEC tunnels - you won't cause any  
> routing loops. An alternative is to create multiple tunnels to the  
> hub site, which will then route between the satellite sites.
>
> Kris.
>
> ----- Original Message ----- From: "John Sommatino" <john at wombo dot com>
> To: <m0n0wall at lists dot m0n0 dot ch>
> Sent: Saturday, November 04, 2006 7:56 AM
> Subject: [m0n0wall] Multiple IPsec tunnels and routing between them
>
>
>> I have one main office and 3 remote locations and have setup IPsec
>> tunnels between them in a star configuration.
>>
>> I have found that each remote location can "see" the main office, but
>> they cannot "see" each other.
>>
>> I was thinking of creating multiple IPsec tunnels between the remote
>> locations, but I fear that I will setup a routing triangle (or
>> quadrangle in this case)
>>
>> Any advise?
>>
>> j
>>
>> ---------------------------------------------------------------
>> John Sommatino                               voice 619.596.2141 x318
>> CEO                                fax 619.596.2144
>> Wombo, Inc.              toll free 877.wombo.inc
>>
>> http://www.wombo.com                  MailTo:john at wombo dot com
>> ---------------------------------------------------------------
>>                   A ship in port is safe, but that
>>                      is not what ships are for.
>>                   Sail out to sea and do new things.
>>
>>                                         -Admiral Grace Hopper,
>>                                               Computer Pioneer
>>
>>
>
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch

---------------------------------------------------------------
John Sommatino                               voice 619.596.2141 x318
CEO                                fax 619.596.2144
Wombo, Inc.              toll free 877.wombo.inc

http://www.wombo.com                  MailTo:john at wombo dot com
---------------------------------------------------------------
                   A ship in port is safe, but that
                      is not what ships are for.
                   Sail out to sea and do new things.

                                         -Admiral Grace Hopper,
                                               Computer Pioneer