[ previous ] [ next ] [ threads ]
 From:  "Mitch \(WebCob\)" <mitch at webcob dot com>
 To:  m0n0wall at lists dot m0n0 dot ch
 Subject:  RE: Firewalling /filtering IPSec tunnels...
 Date:  Fri, 23 Apr 2004 13:50:02 -0700
Further to this question, is it possible (and how?) do you configure to
allow clients at the end of IPSec tunnels to see each other?

Consider 3 mono's - each with WAN and LAN.

I want to connect A & B to C so that A & B can see C's private network , but
ALSO so that A can see B.

A & B CAN NOT be directly connected due to constraints of the service

A, B, and C can all have private lan subnets as required.

Anyone care to point me in the right direction? Do I need to manually add
routes after establishing the tunnels or ?



> -----Original Message-----
> From: Mitch (WebCob) [mailto:mitch at webcob dot com]
> Sent: Friday, April 23, 2004 10:03 AM
> To: m0n0wall at lists dot m0n0 dot ch
> Subject: Firewalling /filtering IPSec tunnels...
> When I set up IPSec tunnels, I need to filter the virtual
> interfaces (we want the security of IPSec VPN tunnels, but don't
> nessecarily want to grant access to the entire network and all
> ports without restriction...
> Can I add normal "reject all" type rules to those interfaces or
> will that break the IPSec setup process somehow?
> Thanks.
> m/