<HTML dir=ltr><HEAD></HEAD>
<BODY>
<DIV><FONT face=Arial color=#000000 size=2>Hello,</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=Arial size=2>i have the following problem:</FONT></DIV>
<DIV><FONT face=Arial size=2>i want to etablish a vpn connection between two sites, and one site must be hidden.</FONT></DIV>
<DIV><FONT face=Arial size=2>This is an one-side vpn connection.</FONT></DIV>
<DIV> </DIV>
<DIV> Net (192.168.0.0/24) <--> FW(VPN openswan, 4.3.2.1) <-- Internet --> FW Partner (1.2.3.4) <--> Foreign Net (10.0.0.0/24)</DIV>
<DIV> </DIV>
<DIV>Our firewall must be hideNat to IP Address 10.10.10.47/32. The foreignNet don't see the net 192.168.0.0/24.</DIV>
<DIV> </DIV>
<DIV>How i make our config file?</DIV>
<DIV> </DIV>
<DIV>conn netme-to-netpartner<BR> # Left security gateway, subnet behind it, next hop toward left.<BR> left=4.3.2.1<BR> leftsubnet=192.168.0.0/24<BR> leftnexthop=%defaultroute<BR> # Right security gateway, subnet behind it, next hop toward right.<BR> right=1.2.3.4<BR> rightid=10.20.0.1<BR> rightsubnet=10.0.0.0/24<BR> authby=secret<BR> pfs=no<BR> # To authorize this connection, but not actually start it, at startup,<BR> # uncomment this.<BR> auto=start<BR></DIV>
<DIV>The tunnel etablished successfully, but i can't route annything, since we hideNat to 10.10.10.47/32.</DIV>
<DIV> </DIV>
<DIV>How do i make "hideNat" on Linux/openswan?</DIV>
<DIV> </DIV>
<DIV>Thanks,</DIV>
<DIV>Heiko</DIV>
<DIV> </DIV><p><font face=Arial size=1><br>=======================================================<br><b> IPS Software GmbH</b><br> Isaac-Fulda-Allee 9<br> 55124 Mainz<br> tel: +49.6131.37577.0<br> fax: +49.6131.37577.55<br> -<br> Niederlassung München:<br> Grafinger Str. 2<br> 81671 München<br> tel.: +49.89.18926780<br> fax.: +49.89.18926808<br> -<br> url: http://www.ips-software.de<br>=======================================================<br> Diese e-Mail enthaelt vertrauliche und/oder rechtlich geschuetzte<br> Informationen. Wenn Sie nicht der richtige Adressat sind oder diese<br> e-Mail irrtuemlich erhalten haben informieren Sie bitte sofort den<br> Absender und vernichten Sie diese e-Mail. Das unerlaubte Kopieren<br> sowie die unbefugte Weitergabe dieser e-Mail ist nicht gestattet.<br>-<br> This e-mail contains confidential and/or proprietary information.<br> If you are not the intended recipient or if you received the e-Mail<br> by mistake we ask you to notify the sender immediately and destroy<br> this e-Mail. The unauthorized reproduction or distribution of this<br> e-Mail is prohibited.</font></p></BODY></HTML>