VPN

Hey all

I'm having problems with VPN connection. I have Soekris 4501 on one end and Linksys R042 on the other.
Soekris has IP 192.168.1.2, Linksys has 192.168.2.1

IPSEC
Routers are connected and can ping Soekris from PC behind Linksys, but can't ping any other machine behind Soekris.

Local subnet is set to Network (192.168.1.0/24)
Remote subnet to 192.168.2.0/24
Remote gateway is Public IP of linksys
DPD = empty

Phase 1
Negotiation mode = main
My identifier = My IP address
Encryption = 3DES
Hash = MD5
DH key = 2
Authentication = pre-shared key

Phase 2
Protocol = ESP
Encryption = 3DES
Hash = MD5
PFS key = 1

Both devices have same phase 1 and 2 settings

PPTP
Server address = 192.168.1.254 (empty IP on subnet)
Remote address range = 192.168.1.144 / 28

When i connet from win7 machine i get
IP = 192.168.1.144
Netmask = 255.255.255.255
Gateway = 0.0.0.0

Again, i can ping Soekris and no one else.

FW rule is set on PPTP and IPSEC to * * * * *

Any idea, what the problem could be?

tnx

Any chance that this could be due to firewall setting from Linksys RV042 side?

Will try editing FW on R042, tnx.

But why do i have the same problem with PPTP. When i dial-in to VPN from Winbox i get same problem. I can ping only M0n0wall.

I'm also confused with the way M0n0wall DHCP works for PPTP

This is what i get on winxp machine
PPP adapter xxx:
        Connection-specific DNS Suffix  . :
        IP Address. . . . . . . . . . . . : 192.168.1.144
        Subnet Mask . . . . . . . . . . . : 255.255.255.255
        Default Gateway . . . . . . . . . : 192.168.1.144

On win7 machine i get the same results, only Gateway is 0.0.0.0

I mean...is this correct behavior? It is not correct Gateway the IP of m0n0wall, in my case 192.168.1.2?

Hmmm.... sound like a common problem with possible solution  >> http://forum.m0n0.ch/index.php?topic=3189.0

Tnx...tried that already, no luck

I did found this blocked many time in fw log. This is the IP i'm getting when connected to PPTP

 6   08:33:07.049165   PPTP   192.168.1.144   igmp.mcast.net   IGMP

I manage to fix this somehow, so now it works. But i have some more problems. I can ping from Linksys side to Soekris with no problem, but from Soekris to Linksys i can't.

I just installed IP cameras on Linksys side and i have some more IP cameras on Soekris side. Locally they all work, but if i want to check cameras on Linksys subnet from Soekris subnet i cant. I can ping them just fine, but when i try to connect over browser, page just doesnt load. But if im on Linkys side i can access cameras from Soekris.

I tried disabling FW on Linksys, but nothing changed. I also have modem between soekris and linksys, which gives internet to Linksys. Modem is on subnet 1.x and Linksys is on 2.x.

So, traffic from soekris to linksys works, but it doesnt work from linksys to soekris. Ping works only to machines behind linksys, but i cant directly ping linksys router over VPN.

What am i missing here?

tnx
teva

I have the same problem, I can only ping from remote network to local network. The default IPsec VPN rule does not work, according to the log, everything from LAN to remote network over VPN is blocked.

The same settings with pfSense works.


m0nowall Version: 1.8.1b546

I have the same problem, I can only ping from remote network to local network. The default IPsec VPN rule does not work, according to the log, everything from LAN to remote network over VPN is blocked.

The same settings with pfSense works.


m0nowall Version: 1.8.1b546

I used a secondary LAN IP address, it works from the primary IP address.