You are not alone. I get thru the authenticationand I get an IP from the
Switch but that is about as far as it gets.

-Ron

>Still doesn't seem to do anything.  I dont even get
>any logging either.  Any thoughts?
>
>Much appreciated.
>
>
>
>--- Nik Clayton <nik at ngo dot org dot uk> wrote: > On Thu, Jun
>24, 2004 at 11:20:08AM -0400, Mark
>> Pimentel wrote:
>> > Has anyone had any luck with getting a Nortel
>> Contivity VPN client through the
>> > m0n0wall?  Doesn't seen to work for me.
>> 
>> If you're using NAT, you need to allow in/outbound
>> traffic between the
>> VPN endpoint and your internal host (the one that
>> runs the VPN client)
>> on ports 10001 and 500.
>> 
>> For example, a snippet of my firewall rules table:
>> 
>>    Proto  Source   Port   Destination  Port
>>   
>>
>-------------------------------------------------------
>>    UDP    w.x.y.z  *      a.b.c.d      500
>>    UDP    w.x.y.z  *      a.b.c.d      10001
>>    UDP    a.b.c.d  500    w.x.y.z      *
>>    UDP    a.b.c.d  10001  w.x.y.z      *
>> 
>> Where 
>> 
>>  a.b.c.d is the IP address of the other end of the
>> VPN.  This
>>  information should be in the configuration settings
>> of the VPN client
>>  software, and/or your network admins should be able
>> to provide it.
>> 
>>  w.x.y.z is the IP address of your VPN client.  This
>> can be '*' if
>>  necessary.
>> 
>> N
>> -- 
>> FreeBSD: The Power to Serve     
>> http://www.freebsd.org/               (__)
>> FreeBSD Documentation Project   
>> http://www.freebsd.org/docproj/    \\\'',)
>>                                                     
>>                  \/  \ ^
>>    --- 15B8 3FFC DDB4 34B0 AA5F  94B7 93A8 0764 2C37
>> E375 ---         .\._/_)
>> 
>
>> ATTACHMENT part 2 application/pgp-signature 
> 
>
>---------------------------------------------------------------------
>To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
>For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>
--
Ron Rosson
ron at oneinsane dot net