News
:
This forum is now permanently frozen.
m0n0wall Forum
>
m0n0wall Support (English)
>
VPN
Topic: IPSec tunnels to router to IPSec tunnels...lost in the land of IPSec
Pages: [
1
]
Topic: IPSec tunnels to router to IPSec tunnels...lost in the land of IPSec (Read 1799 times)
IPSec tunnels to router to IPSec tunnels...lost in the land of IPSec
« on: July 17, 2009, 17:36:28 »
wescb
Posts: 8
I'll try to post this as simply as possible because I'm quite lost:
I have a Monowall (all ALIX running 13b15/16) connecting to a remote host via IPSec. All is well and good, a host immediately behind that monowall can ping a host on the other end a vice versa. This same monowall also has IPSec tunnels to other networks. I want those other networks to be able to reach the first "remote host" via the single endpoint on the first monowall. Is this possible? I setup the tunnel with the first monowall as the endpoint but am having no joy.
remote host <----IPSEC tunnel-----> first monowall <---LOCAL----> host on local subnet <--/-/--IPSEC tunnel---/--/--/--> host joined to first monowall via IPSEC can reach first monowall but not "remote host"
Note everything can reach "first monowall" but the 2nd IPSec'd node cannot reach the "remote host"
Perhaps my tunnels need to be configured differently than I'm using to connect the first monowall to the remote host?
Thanks for all your help in advance, please post if you need clarification on anything, I know it's a cluster.
Wes
Re: IPSec tunnels to router to IPSec tunnels...lost in the land of IPSec
« Reply #1 on: July 17, 2009, 20:04:18 »
CSchwadorf
Posts: 12
If I understand you correct, you can try the tip "15.26.1. Summarizing the subnets using a larger mask" described in the
faq
on your "2nd IPSec'd node".
Pages: [
1
]