[ previous ] [ next ] [ threads ]
 
 From:  "Barry Mather" <barry dot mather at dorecentres dot com dot au>
 To:  <m0n0wall at lists dot m0n0 dot ch>
 Subject:  RE: [m0n0wall] SNMP over IPsec VPN
 Date:  Tue, 5 Oct 2004 15:54:08 +1000
This is very odd, and must be a specific thing to m0n0 as I have snmp
walking and mrtg-ing perfectly using sonicwall kit ... through ipsec
tunnels ...

I have also tried a lot with m0n0 but with no success ...

One thing have not tried is running a packet sniffer on either end of
the tunnel, would be interesting to see where the packets go with an
snmp walk...

Just my 2c

-----Original Message-----
From: Chris Buechler [mailto:cbuechler at gmail dot com] 
Sent: Tuesday, 5 October 2004 3:20 PM
To: m0n0wall
Subject: [m0n0wall] SNMP over IPsec VPN

SNMP can't be queried over an IPsec VPN tunnel.  Several of us in
#m0n0wall have tried this and it doesn't work.

This has been discussed before on the list in this thread:
http://m0n0.ch/wall/list/?action=show_threads&actionargs[]=200407#%2Farc
hive%2F71%2F19

And the general consensus was "there is no reason it shouldn't work",
but it doesn't.

From remove VPN, if I nmap UDP scan the LAN IP of the remote m0n0wall,
it shows 161/udp open.  But snmpwalk won't pull anything.  Not getting
blocked by the firewall.

I know there are workarounds, but some enlightenment on a solution or
why it doesn't work, for documentation purposes, would be much
appreciated.

Thanks,
-Chris

---------------------------------------------------------------------
To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch




Dore Achievement Centres (Pty) Ltd - Hotline: 1300 55 77 11

www.dorecentres.com.au

This e-mail message may contain confidential or privileged information 
and is intended solely for the individual to whom it is addressed. If you 
are not the named addressee you should not disseminate, distribute or 
copy this e-mail. If you have received it in error please notify us 
immediately by telephoning 1300 55 77 11 and destroy this e-mail and 
any attachments. E-mail transmission cannot be guaranteed to be 
secure or error-free as information could be intercepted, corrupted, lost, 
destroyed, arrive late or incomplete, or contain viruses. The sender 
therefore does not accept liability for any errors or omissions in the 
contents of this message, which arise as a result of e-mail transmission. 
The content of this email is not necessarily that of the Dore Acievement 
Centres unless otherwise specified.  This email was scanned for possible 
viruses and was sent on 5/10/2004 by barry dot mather at dorecentres dot com dot au to m0n0wall at lists dot m0n0 dot ch