[ previous ] [ next ] [ threads ]
 From:  Mark Weikert <mark at blrholdingsinc dot com>
 To:  "<m0n0wall at lists dot m0n0 dot ch>" <m0n0wall at lists dot m0n0 dot ch>
 Subject:  Re: [m0n0wall] Strange Issue with IPsec tunnel
 Date:  Fri, 13 Sep 2013 08:20:05 -0400
I figured out the issue. I needed a rule on the IPsec side to allow traffic. 

Thanks and sorry for the premature email :)

Sent from my iPhone

On Sep 13, 2013, at 8:08 AM, Mark Weikert <mark at blrholdingsinc dot com> wrote:

> Hi everyone!
> I have 2 Soekris Monowalls connected with Ipsec and I have been having some
> issues since early this week.
> Location 1 (L1 ­ our main office) can ping/connect to Location 2 (L2 ­ our
> Colo) with no issues at all. Everything works just fine. But L2 cannot ping
> anything at L1. When I do a trace route from L2, it stops at L2¹s firewall.
> If I use PPTP to connect from L2 to L1, all works perfectly.
> I did make some changes to L1¹s firewall (added a DMZ) but I don¹t remember
> changing any of the rules. I would have to assume that I did something to
> the L1 firewall to make this stop. I just can¹t figure out what. Anyone have
> any thoughts on this? I can send screenshots of the rules on L1 if needed.
> Thanks
> - - - - - - - - - -
> Mark Weikert | Systems Administrator
> BLR Holdings, Inc.
> 4350 East-West Highway
> Suite 307
> Bethesda, MD 20814
> p. 301-771-3250  f. 301-656-7904
> c. 240-464-9693  e. mark at blrholdingsinc dot com
> Creating Operational Efficiencies
> www.thebossgroup.com  www.proposaldc.com www.cellaconsulting.com
> ?Confidential Information: The information contained in this message and any
> attachment may be proprietary, confidential, and privileged or subject to
> the work product doctrine and thus protected from disclosure.  If the reader
> of this message is not the intended recipient, or an employee or agent
> responsible for delivering this message to the intended recipient, you are
> hereby notified that any dissemination, distribution or copying of this
> communication is strictly prohibited. If you have received this
> communication in error, please notify me by telephone or by return e-mail,
> immediately, and please destroy the original message and all copies.  Thank
> you¹