|
||||||||||
If you're doing IPSEC behind NAT make sure you do tunneling and don't use AH. Aside from that I'm afraid I don't have much guidance. It was mostly follow the instructions and it worked, so I didn't have to really figure out why or why not. :) At 06:58 PM 10/7/2004, MARK PIMENTEL wrote: >I was able to connect successfully but had no luck >moving packets back and forth. I figure it may have >something to do with the smc router i was using and >the fact that i had to IPSEC over NAT. > > > > > --- Melvin Backus <melvin at sleepydragon dot net> wrote: > > I was able to get the IPSEC stuff working from my XP > > machine to an IPCop > > machine using the native client. You might want to > > check out this > > link. It references a couple of tools which make > > using the native client a > > bit easier. > > > > >http://www.ipcop.org/cgi-bin/twiki/view/IPCop/IPCopVPNW2Kv140 > > > > At 11:00 AM 10/4/2004, James W. McKeand wrote: > > >The page below describes using the local Security > > Settings in Windows 2000 > > >(secpol.msc) for a ZyWALL firewall. The page goes > > through a lot of junk on > > >how to "Create a custom MMC console" which they > > never tell you to use... > > >This is as close to a "embedded client" as you will > > find. The page also > > >cites some Microsoft pages on IPSEC and Windows > > 2000. AFAIK, the theory is > > >similar to what you can find with XP. > > > > > >*WARNING* I had tried something similar before the > > SonicWALL VPN client > > >supported XP. Key word is tried - I could not get > > it to work. When SonicWall > > >upgraded to a newer version of the SafeNet client > > that supported XP a couple > > >of weeks later, I gave up in secpol. > > > > > >This is *NOT* for the faint hearted. If someone is > > able to get this to work, > > >please share with the group. > > > > > >Here is the Link: > > > >http://www.zyxel.com/support/supportnote/zywall10_50_100/app/zw_w2k.htm > > > > > >_________________________________ > > >James W. McKeand > > > > > > > > >-----Original Message----- > > >From: Marco Bottacin [mailto:m0n0 at westdam dot com] > > >Sent: Monday, October 04, 2004 5:41 AM > > >To: m0n0wall at lists dot m0n0 dot ch > > >Subject: [m0n0wall] VPN QUESTION : IPSEC CLIENT > > > > > >Hi to everyone. > > >I need a VPN Freeware clint ( or opensource ) for > > Mobile Connectivity using > > >IPSEC. > > >I know i can use PPTP and win2k/xp embedded client > > but i need more speed and > > >security. > > >Someone can tell me if windows has a embedded ipsec > > client? > > >if so,how to activate? > > >i've searched for this but cannot figure out! > > > > > >I've got only 2 client wich has to use VPN but... > > > > > >do u still suggest PPTP? > > > > > > > > >let me know. > > >byez > > >marco bottacin - westdam > > > > > > > > > >--------------------------------------------------------------------- > > >To unsubscribe, e-mail: > > m0n0wall dash unsubscribe at lists dot m0n0 dot ch > > >For additional commands, e-mail: > > m0n0wall dash help at lists dot m0n0 dot ch > > > > > > > > > >--------------------------------------------------------------------- > > >To unsubscribe, e-mail: > > m0n0wall dash unsubscribe at lists dot m0n0 dot ch > > >For additional commands, e-mail: > > m0n0wall dash help at lists dot m0n0 dot ch > > > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ > > Whom computers would destroy, they must first drive > > mad. > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ > > > > Melvin Backus > > Principal Wizard > > Sleepy Dragon Enterprises > > www.sleepydragon.net > > > > > > >--------------------------------------------------------------------- > > To unsubscribe, e-mail: > > m0n0wall dash unsubscribe at lists dot m0n0 dot ch > > For additional commands, e-mail: > > m0n0wall dash help at lists dot m0n0 dot ch > > > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Whom computers would destroy, they must first drive mad. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Melvin Backus Principal Wizard Sleepy Dragon Enterprises www.sleepydragon.net |