<html>
<head>
<style><!--
.hmmessage P
{
margin:0px;
padding:0px
}
body.hmmessage
{
font-size: 12pt;
font-family:Calibri
}
--></style></head>
<body class='hmmessage'><div dir='ltr'>Dan, thanks for your response<br><br>My current configuration is this (fake ips only).<br><br><u><i>ipsec.conf</i></u><br>conn %default<br> authby=secret<br> type=tunnel<br> left=78.222.51.10<br><br>conn linux-rv042<br> auto=add<br> right=81.18.24.120<br> rightsubnet=192.168.1.101/32<br> authby=secret<br> ike=aes256-sha1;modp1536<br> esp=aes256-sha1;modp1536<br> pfs=yes<br> aggrmode=no <br><br>The
cisco ipsec vpn (rv042g router) is also configured as a client to
gateway, cause I don't have a real network right now in the ubuntu
client. Here is a picture of it <a href="http://tinypic.com/view.php?pic=k34tqr&s=5" target="_blank">http://tinypic.com/view.php?pic=k34tqr&s=5</a><br><br>This
configuration works ok, but is more like a "client to gateway" one, not
a "gateway to gateway". So it's only a one way traffic and the machines
inside the netowork can't see the client.<br><br>As I don't have much
knowledge about networks/vpns, my question is more related to seed if I
can do something like a private network in my ubuntu server client, to
make the two ways traffic work (configuring the rv042g router as a
gateway to gateway instead of a client to gateway).<br><br>Thanks in advance!<br><br><br><div><hr id="stopSpelling">Date: Fri, 7 Jun 2013 20:49:15 +0000<br>From: dan.cave@me.com<br>To: soloninguno@hotmail.com<br>Subject: Re: [Openswan Users] Gateway to gateway without router in one endpoint?<br><br>have you got a private network setup on the ubuntu server and have you got a route or both servers networks so they can see each other<br><br><div>Please post your ipsec .conf and ip addr from the Linux host as well as the Cisco config... And logs from both sides if possible..<br><br><span style="font-size:87%;">Sent from Samsung Mobile</span> </div><br><br>
-------- Original message --------
Subject: [Openswan Users] Gateway to gateway without router in one endpoint?
From: Jose M
To: users@lists.openswan.org
CC:
<br><br><div dir="ltr">From: soloninguno@hotmail.com<br><div>To: users@lists.openswan.org<br>Subject: Gateway to gateway without router in one endpoint?<br>Date: Fri, 7 Jun 2013 16:35:12 -0300<br><br>
<style><!--
.ExternalClass .ecxhmmessage P {
padding:0px;
}
.ExternalClass body.ecxhmmessage {
font-size:12pt;
font-family:Calibri;
}
--></style>
<div dir="ltr">I need to create an ipsec vpn between an internal network behind a cisco router and
an ubuntu server in the outside that is directly connected to the web (no
router here).<br><br>Right now I've test openswan to create a client to gateway vpn an works as expected. Unforunately with this configuration I don't have two way traffic, the client sees the internal network, but the network can't see the client.<br><br>My knowledge of networks isn't the best, so I need to ask, is it possible to create some kind of virtual nics in ubuntu client server to simulate a gateway and an internal network (with only one machine) in this endpoint, so the machines in the internal network can see this client?<br><br>Thanks in advance!<br><br><br> </div></div> </div></div> </div></body>
</html>