[ previous ] [ next ] [ threads ]
 
 From:  "Christopher M. Iarocci" <iarocci at eastendsc dot com>
 To:  Chet Harvey <chet at pittech dot com>
 Cc:  Joseph Lagreca <lagreca at hotmail dot com>, m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: Rv: [m0n0wall] IPSEC howto?
 Date:  Fri, 07 May 2004 07:53:30 -0400 
Chet Harvey wrote:

>Did you add a static route on each side? Need to do that to to traverse the
>networks. Your client PC send a packet to m0n0wall, even though it has a
>connection, it doesn't know where to go with it.
>  
>
Not true, the configuration of the IPSEC VPN automatically adds the 
rules and routes needed.

>I have an IPSEC VPN from my dynamic IP on Cox to a Dynamic IP on a Comcast
>system. So I know it's not your ISP.
>  
>
I have a VPN set up on a dynamic IP through Optimum Online cable, works 
fine also.

Chris

>
>
>--------- Mensagem Original --------
>From: Joseph Lagreca <lagreca at hotmail dot com>
>To: m0n0wall at lists dot m0n0 dot ch <m0n0wall at lists dot m0n0 dot ch>
>Subject: [m0n0wall] IPSEC howto?
>Date: 06/05/04 18:42
>
>  
>
>>I'm trying to setup a IPSEC VPN between two m0n0walls and have been
>>unsucessful.
>>
>>I was wondering if there was a HOWTO written that might be able to help
>>    
>>
>me.
>  
>
>>If not, when I get this all figured out, I would like to write one, to
>>    
>>
>help
>  
>
>>people in the future.
>>
>>I enabled IPSEC on both m0n0's, and setup a connection to each.  But I am
>>unable to ping the remote m0n0 by its internal IP address.  Do I need to
>>    
>>
>add
>  
>
>>a firewall rule or NAT fule for the VPN?
>>
>>A few configurations I am not sure of:
>>
>>For remote subnet on one m0n0 I have 192.168.1.0 / 24.  Is this the
>>    
>>
>correct
>  
>
>>way of showing a class C subnet on m0n0?
>>
>>For the identifier I used My IP address.  Would it be better to use
>>something else?
>>
>>The preshared key is the same on both m0n0's.
>>
>>What is the VPN/IPSEC/Pre-shared keys section for if I can enter a
>>    
>>
>preshared
>  
>
>>key directly under the tunnel configuration?
>>
>>Could it be possible my connection is setup correctly but cox.net is
>>blocking the ports necessary to create a VPN?
>>
>>Thanks so much for your help.
>>
>>Joe
>>
>>
>>
>>---------------------------------------------------------------------
>>To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
>>For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>>
>>
>>
>>
>>
>>    
>>
>
>
>---------------------------------------------------------------------
>To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
>For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>
>  
>