[ previous ] [ next ] [ threads ]
 
 From:  Trevor Merrill <trevor dot merrill at gmail dot com>
 To:  Falcor <falcor at netassassin dot com>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] VPN rookie
 Date:  Thu, 15 Nov 2007 06:32:47 -0800 
Falcor,

> Depends.  If you have more than one IP I would just NAT PAT the  
> extra IP to the m0n0wall and then set it up as if it is the  
> firewall / PPTP server.  Probably most "normal" way wich won't  
> require any twisting of your brain.

This is what I was thinking as well. Would that look something like  
this?

DSL Modem -> switch -> monowall ->             switch ->LAN
			               \-> existing firewall ->

Trevor
On Nov 14, 2007, at 10:44 PM, Falcor wrote:

> Depends.  If you have more than one IP I would just NAT PAT the  
> extra IP to the m0n0wall and then set it up as if it is the  
> firewall / PPTP server.  Probably most "normal" way wich won't  
> require any twisting of your brain.
>
> you could always just port forward PPTP traffic from your main  
> firewall to the 192.168.x.0/28 network address used for the WAN  
> interface on the m0n0wall.  Do remember you will need to tell the  
> m0n0wall to permit RFC 1918 addresses on the WAN interface.  
> (technically the routing of 1918 addresses.)
> The rest of the setup is de facto.  Just pull the PPTP guide from  
> the m0n0wall document server or check the updated PPTP setup docs at http://rdr.to/gl 
>  there is a link to a how to video there too.
>
> Trevor Merrill wrote:
>
>> I want to setup monowall behind an existing firewall to provide  
>> VPN  access for users to all LAN resources. I just want monowall to  
>> act as  a vpn server and let the firewall currently in place do the  
>> filtering.  Is this possible with monowall? My current setup is a  
>> very basic one:
>>
>> DSL modem with static IP block -> Linksys running DD-WRT -> switch - 
>> >  servers
>> WAN IP block                    192.168.1.x range
>>
>> Where would I place the monowall? What would the WAN and LAN   
>> interfaces be? What would the monowall PPTP config look like? Does   
>> anyone know of a good VPN resource for more of a vendor neutral   
>> explanation of VPNs, their placement and configuration?
>>
>> Many thanks,
>> Trevor
>>
>> ---------------------------------------------------------------------
>> To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
>> For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>>
>