On 3/12/2010 3:53 AM, Henry Barker wrote: > I’m attempting to connect to a Speedtouch 608WL router with the Shrewsoft > client, and tunnel all traffic through the Speedtouch.. > > I have successfully managed to bring up a tunnel and ping (both ways) on the > remote LAN when I either have ‘Obtain Topology Automatically or Tunnel All’ > ticked, or I specify only the remote LAN address (192.168.123.0/24) as a > remote network resource. This seems to work well. > > When I specify 0.0.0.0/24 as the remote network resource the tunnel is > brought up successfully, but I cannot route any traffic through the tunnel, > either to the remote LAN or to the Internet. I can resolve DNS addresses > however. >
I think your settings are incorrect. A network definition of 0.0.0.0/24 means 0.0.0.0 -> 0.0.0.255. If you want to negotiate a single SA that sends all traffic via the tunnel, use 0.0.0.0/0.0.0.0 or don't specify any networks ( leave the list blank ). But for that to work correctly, the gateway probably needs an identical policy configuration ( which it looks like it has from your log output ). > > Any ideas as to what I can look at to debug this further? Many thanks in > advance, > Hope this helps, -Matthew _______________________________________________ vpn-help mailing list [email protected] http://lists.shrew.net/mailman/listinfo/vpn-help
