"JR" <tiresias at gmail dot com> wrote in message
news:deee1e610802090018k5ee48ccbub97cc438258df36b at mail dot gmail dot com...
> On Jan 23, 2008 3:35 PM, JR <tiresias at gmail dot com> wrote:
> I can now confirm that this works for me.
> It would be helpful to update the IPSEC chapter in the m0n0wall
> handbook (http://doc.m0n0.ch/handbook/ipsec.html) to state that
> certificate VPN's on m0n0wall require the subjectAltName parameter in
> the certs and must be used with the FQDN identifier matching the email
> address on the certs.
Did you try monowall as IPSec NAT-T client?