[ previous ] [ next ] [ threads ]
 
 From:  "Chris Buechler" <cbuechler at gmail dot com>
 To:  m0n0wall <m0n0wall at lists dot m0n0 dot ch>
 Subject:  Re: [m0n0wall] ipsec.conf File Question
 Date:  Wed, 6 Jun 2007 15:25:27 -0400
On 6/6/07, Matt <mhoppes at gmail dot com> wrote:
> Ok,
> I see that.. sorry... let's start this thread over :)
> I'm trying to establish a VPN with Verizon.   When I create the IPSEC info
> in m0n0wall the following appears in my racoon.conf file:
> sainfo address
> 192.168.1.0/24 any address 63.79.178.192/30 any {
>  encryption_algorithm 3des;
>  authentication_algorithm hmac_md5;
>  compression_algorithm deflate;
>
>  pfs_group 2;
>  lifetime time 3600 secs;
> Phase-2 of the IPSEC is not coming up.  Verizon wants me to change it to:
> sainfo address 63.174.224.176/32 any address
> 63.79.178.192/30 any {
>  encryption_algorithm 3des;
>  authentication_algorithm hmac_md5;
>  compression_algorithm deflate;
>  pfs_group 2;
>  lifetime time 3600 secs;
> I don't see any way to make that happen in m0n0wall.
>
> 192.168.1.x/24 is my LAN
> 63.174.244.176/32 is my WAN.
>

What are you trying to accomplish? I don't know if doing IPsec with
your WAN IP like that is going to work or not, I've never heard of
anybody doing such a thing.

-Chris