|
|
Post by Fatboy on Aug 19, 2015 8:03:20 GMT
Hi
My IPSEC VPN from Mobile (TheGreenBow) to SmallWall 1.8.3 does not work. The VPN connect without error, and the connetion ist green. But i can't connect to a http GUI or ping a host. The firewall rules are default.
Greets
Daniel
|
|
|
|
Post by Lee Sharp on Aug 19, 2015 17:31:18 GMT
Default is no access.  Add a firewall rule to the VPN network, and you should be good. |
|
fatboy
Junior Member
Posts: 13 
|
Post by fatboy on Aug 20, 2015 6:18:56 GMT
Hi I have also a Site to Site IPSEC VPN and it works! Firewall Rule:  Greets Daniel |
|
|
|
Post by Lee Sharp on Aug 20, 2015 12:53:22 GMT
Well, so much for that idea. So now it is all about the logs and seeing where it is failing. Is NAT-T enabled? Have you tried different identifiers? With l2tp available not, mobile IPsec is not as common or well supported in the industry anymore because it was always problematic... But I will do what I can. |
|
fatboy
Junior Member
Posts: 13
|
Post by fatboy on Aug 24, 2015 11:59:15 GMT
Hi
NAT-T is enabled, yes. M0n0wall 1.8.1 run, but smallwall 1.8.3 dont run. Any ideas?
thx Daniel
|
|
|
|
Post by Lee Sharp on Aug 24, 2015 14:32:40 GMT
I am getting another report that changes for l2tp may have broken mobile IPSEC. I need to do some more testing...
|
|
|
|
Post by Lee Sharp on Sept 2, 2015 21:46:33 GMT
So, I spoke with Andy White who wrote the original patch, and it seems we have a fundamental incompatibility. L2tp requires "Main" and brakes with "Aggressive." Mobile IPsec requires "Aggressive" and brakes with "Main." It seems main uses the IP address as the identifier which does not work in Mobile IPsec. So, try resetting your tunnels to aggressive, and disabling l2tp and see if it works. If not, let me know! If it does work, I need to fix the documentation and the web GUI pages to cover this. |
|
fatboy
Junior Member
Posts: 13
|
Post by fatboy on Sept 9, 2015 5:54:57 GMT
Hi all
I'm back from vacation. There is no way for Mobile IPsec. I tested all versions. I hope you find a solution
Thx
Daniel
|
|
|
|
Post by Lee Sharp on Sept 10, 2015 0:19:27 GMT
|
|
fatboy
Junior Member
Posts: 13
|
Post by fatboy on Sept 10, 2015 12:11:11 GMT
Yes, I'm going to test this. Then I will give an answer.
|
|
fatboy
Junior Member
Posts: 13
|
Post by fatboy on Sept 17, 2015 8:36:22 GMT
t1n1wall have the same issue as smallwall :-(
|
|
|
|
Post by Lee Sharp on Sept 18, 2015 2:10:42 GMT
OK, I have been looking at it, and I can't find the problem. The guy who made the original m0n0wall patch is also looking into this in the thread here. forums.t1n1wall.com/index.php?topic=21.0You might want to follow up there as well. Could you post your results there of failure with all options? |
|
|
|
Post by Lee Sharp on Sept 21, 2015 15:23:38 GMT
|
|
fatboy
Junior Member
Posts: 13
|
Post by fatboy on Sept 28, 2015 4:52:01 GMT
No i have installed t1n1wall Version 1.8.2b64. The same problem. The connection is established, but no data traffic.
|
|
|
|
Post by Lee Sharp on Sept 28, 2015 14:07:42 GMT
Well, darn... Could you send me a copy of you config from status.php, (open status.php and save the page) or could you allow me to log in to your firewall? I want to make sure I am not missing something simple.
|
|
Add a firewall rule to the VPN network, and you should be good.
