News: This forum is now permanently frozen.
Pages: [1]
Topic: IPsec with DynDNS on both sides  (Read 4015 times)
« on: May 12, 2008, 11:44:43 »
snotty77 *
Posts: 3

Hi,
I have a few Tunnels with IPsec and DynDNS Adresses working with Netgear Hardware. Now I would like to exchange this Netgear Hardware with M0N0WALL on ALIX Boards. Could someone please post how to do this? We have tested this with IPcop with no Problems, but it doesnt seem to work with M0N0WALL. Fixed ip is NO solution, so please no answer in the form of: get a fixed ip and all is fine... This thing is a really stopper in the moment. I have looked through the forum, but did not find a solution, please help.
« Reply #1 on: May 15, 2008, 15:16:15 »
harry66 *
Posts: 2

Hi,

it is absolutely the same for me. I found a php script that is able to dynamically reconfigure the tunnel setup at http://www.unibia.net/dev/monowall.html, but that's not a solution.

I really love the monowall and I am using it for more than three years in various scenarios but this becomes a showstopper now.

From my point of view it is playing in the same class as Clavister SGs and Zyxel Zywalls performancewise and featurewise.

If I can't have a commitment to have this feature integrated I sadly have to say good bye and settle for a Zywall2 for the same price as a WRAP or Soekris... becaause they support dynamic IP terminated IPsec endpoints.

Kind Regards
Uwe
« Reply #2 on: May 15, 2008, 15:22:30 »
harry66 *
Posts: 2

I found a remark in the 1.3 beta branch to start support "dynamic tunnels" http://m0n0.ch/wall/beta.php.

Can someone confirm this to be working?

/Uwe
« Reply #3 on: May 15, 2008, 17:46:15 »
Mephi *
Posts: 6

Yes I can. Since 1.3b7 (now 1.3b11) I have a permanent tunnel to a Netgear FVS338. Both endpoints with DynDNS. This feature works without issues. Hardware:  ALIX.2C3.
« Reply #4 on: May 15, 2008, 23:35:25 »
snotty77 *
Posts: 3

Could you please give us a sample config for this scenario? I have a netgear FVS318 and tried a few days without success. I even installed pfsense, which had al lot of features but is also al lot slower. Even with pfsense i had no luck in installing a tunel. Please Help.
« Reply #5 on: May 17, 2008, 14:50:46 »
Mephi *
Posts: 6

Screenshots of the m0n0wall configuration:

(http://img230.imagevenue.com/loc561/th_26719_mono01_122_561lo.jpg)(http://img162.imagevenue.com/loc766/th_26720_mono02_122_766lo.jpg)(http://img197.imagevenue.com/loc557/th_26726_mono03_122_557lo.jpg)(http://img145.imagevenue.com/loc1062/th_26731_mono05_122_1062lo.jpg)

The last one is not really essential. I raised the check up time to 300s because the IP address changes seldom.
« Last Edit: May 17, 2008, 15:10:39 by Mephi »
« Reply #6 on: May 17, 2008, 17:38:51 »
Mephi *
Posts: 6

And here the screenshots of the Netgear FVS 338 configuration:

(http://img217.imagevenue.com/loc553/th_38515_mono06_122_553lo.jpg)(http://img124.imagevenue.com/loc1102/th_38517_mono07_122_1102lo.jpg)(http://img232.imagevenue.com/loc406/th_38532_mono08_122_406lo.jpg)
 
Pages: [1]
 
 
Powered by SMF 1.1.20 | SMF © 2013, Simple Machines