[ previous ] [ next ] [ threads ]
 From:  "Curt Shaffer" <curt at chilitech dot net>
 To:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] IPSec
 Date:  Thu, 1 Apr 2004 17:15:56 -0500 (EST)
Basically this is the situation:

First of all thanks to Falcor for the very helpful documentation ;)


I have three sites total. Each site will have a domain controller. I want
all of the domain controllers to replicate over the VPN. I don't want to
have the windows boxes on the outside for obvious reasons.
I want the monowall boxes to create the tunnel which the DCs replicate
over. Am I misunderstanding or do the monowall boxes actually create the
tunnels  so that this is possible. The only other option that I can think
of if not is to give the DCs external IPs and set up bridging firewalls at
each location. I also have to replicate MSSQL over these links also.

Thanks so much for the response!

Curt Shaffer
Wireless/Network Specialist
Chilitech Internet Solutions

> ----- Original Message -----
> From: "Curt Shaffer" <curt at chilitech dot net>
> To: <m0n0wall at lists dot m0n0 dot ch>
> Sent: Thursday, April 01, 2004 10:54 AM
> Subject: [m0n0wall] IPSec
>> I am trying to connect 3 monowall boxes via IPSEC so we can replicate
>> Active directory between 3 sites. I have tried multiple setups on the
>> m0n0wall to no avail. Maybe I am missing how this is supposed to work.
>> After setting up the m0n0wall systems the computers behind them can not
>> connect to the m0n0wall or the other systems. Does anyone have any
>> ideas or documentation on how to accomplish this?
>> Thanks!
> Curt,
> We have conneted many monowall's back to a central site. We need more
> information to help you out. Can you give us a diagram and some ip
> information such as subnet's gateway's other routers at all the locations
> ?
> So you have a total of 4 monowall's ? One at the corporate office and one
> at
> each of the 3 remote locations ? Do you have the ipsec tunnels up and
> running ?
> Jim Wells
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch