[ previous ] [ next ] [ threads ]
 
 From:  Melvin Backus <melvin at sleepydragon dot net>
 To:  MARK PIMENTEL <mpimentc568 at rogers dot com>, "James W. McKeand" <james at mckeand dot biz>, 'Marco Bottacin' <m0n0 at westdam dot com>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  RE: [m0n0wall] VPN QUESTION : IPSEC CLIENT
 Date:  Thu, 07 Oct 2004 20:09:00 -0400
If you're doing IPSEC behind NAT make sure you do tunneling and don't use 
AH.  Aside from that I'm afraid I don't have much guidance.  It was mostly 
follow the instructions and it worked, so I didn't have to really figure 
out why or why not. :)

At 06:58 PM 10/7/2004, MARK PIMENTEL wrote:
>I was able to connect successfully but had no luck
>moving packets back and forth.  I figure it may have
>something to do with the smc router i was using and
>the fact that i had to IPSEC over NAT.
>
>
>
>
>  --- Melvin Backus <melvin at sleepydragon dot net> wrote:
> > I was able to get the IPSEC stuff working from my XP
> > machine to an IPCop
> > machine using the native client.  You might want to
> > check out this
> > link.  It references a couple of tools which make
> > using the native client a
> > bit easier.
> >
> >
>http://www.ipcop.org/cgi-bin/twiki/view/IPCop/IPCopVPNW2Kv140
> >
> > At 11:00 AM 10/4/2004, James W. McKeand wrote:
> > >The page below describes using the local Security
> > Settings in Windows 2000
> > >(secpol.msc) for a ZyWALL firewall. The page goes
> > through a lot of junk on
> > >how to "Create a custom MMC console" which they
> > never tell you to use...
> > >This is as close to a "embedded client" as you will
> > find. The page also
> > >cites some Microsoft pages on IPSEC and Windows
> > 2000. AFAIK, the theory is
> > >similar to what you can find with XP.
> > >
> > >*WARNING* I had tried something similar before the
> > SonicWALL VPN client
> > >supported XP. Key word is tried - I could not get
> > it to work. When SonicWall
> > >upgraded to a newer version of the SafeNet client
> > that supported XP a couple
> > >of weeks later, I gave up in secpol.
> > >
> > >This is *NOT* for the faint hearted. If someone is
> > able to get this to work,
> > >please share with the group.
> > >
> > >Here is the Link:
> >
> >http://www.zyxel.com/support/supportnote/zywall10_50_100/app/zw_w2k.htm
> > >
> > >_________________________________
> > >James W. McKeand
> > >
> > >
> > >-----Original Message-----
> > >From: Marco Bottacin [mailto:m0n0 at westdam dot com]
> > >Sent: Monday, October 04, 2004 5:41 AM
> > >To: m0n0wall at lists dot m0n0 dot ch
> > >Subject: [m0n0wall] VPN QUESTION : IPSEC CLIENT
> > >
> > >Hi to everyone.
> > >I need a VPN Freeware clint ( or opensource ) for
> > Mobile Connectivity using
> > >IPSEC.
> > >I know i can use PPTP and win2k/xp embedded client
> > but i need more speed and
> > >security.
> > >Someone can tell me if windows has a embedded ipsec
> > client?
> > >if so,how to activate?
> > >i've searched for this but cannot figure out!
> > >
> > >I've got only 2 client wich has to use VPN but...
> > >
> > >do u still suggest PPTP?
> > >
> > >
> > >let me know.
> > >byez
> > >marco bottacin - westdam
> > >
> > >
> >
> >---------------------------------------------------------------------
> > >To unsubscribe, e-mail:
> > m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> > >For additional commands, e-mail:
> > m0n0wall dash help at lists dot m0n0 dot ch
> > >
> > >
> >
> >---------------------------------------------------------------------
> > >To unsubscribe, e-mail:
> > m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> > >For additional commands, e-mail:
> > m0n0wall dash help at lists dot m0n0 dot ch
> >
> > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> > Whom computers would destroy, they must first drive
> > mad.
> > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> >
> > Melvin Backus
> > Principal Wizard
> > Sleepy Dragon Enterprises
> > www.sleepydragon.net
> >
> >
> >
>---------------------------------------------------------------------
> > To unsubscribe, e-mail:
> > m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> > For additional commands, e-mail:
> > m0n0wall dash help at lists dot m0n0 dot ch
> >
> >

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Whom computers would destroy, they must first drive mad.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Melvin Backus
Principal Wizard
Sleepy Dragon Enterprises
www.sleepydragon.net