Further to this question, is it possible (and how?) do you configure to
allow clients at the end of IPSec tunnels to see each other?
Consider 3 mono's - each with WAN and LAN.
I want to connect A & B to C so that A & B can see C's private network , but
ALSO so that A can see B.
A & B CAN NOT be directly connected due to constraints of the service
A, B, and C can all have private lan subnets as required.
Anyone care to point me in the right direction? Do I need to manually add
routes after establishing the tunnels or ?
> -----Original Message-----
> From: Mitch (WebCob) [mailto:mitch at webcob dot com]
> Sent: Friday, April 23, 2004 10:03 AM
> To: m0n0wall at lists dot m0n0 dot ch
> Subject: Firewalling /filtering IPSec tunnels...
> When I set up IPSec tunnels, I need to filter the virtual
> interfaces (we want the security of IPSec VPN tunnels, but don't
> nessecarily want to grant access to the entire network and all
> ports without restriction...
> Can I add normal "reject all" type rules to those interfaces or
> will that break the IPSec setup process somehow?