[Openswan Users] sfs client virtual IP
Konstantin Gavrilenko
k.gavrilenko at arhont.com
Tue Feb 10 00:54:30 CET 2004
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi,
I am faced with a following problem, well a challenge really.
When sfs (1.99.8) connects as a client to the internal private network,
the source ip of the packets that enter the internal net (class_C) on
the other end is the real IP. Eventhough I can do some SNATing on the
firewall to make it look as having the source IP belonging to the
private net, I think there should be a much nicer way of doing so.
I have set up
virtual_private=%v4:192.168.0.0/16
rightsubnet=vhost:%no,%priv
so that softremote client's virtual IP ID gets authorized.
But how do I assign a virtual IP to the freeswan client end?
p.s. Also, has anyone made sfs (as a client) to obtain virtual IP over DHCP?
Thanks in advance.
- --
Respectfully,
Konstantin V. Gavrilenko
Arhont Ltd - Information Security
web: www.arhont.com
e-mail: k.gavrilenko at arhont.com
tel: +44 (0) 870 44 31337
fax: +44 (0) 117 969 0141
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFAKCjivmyQCE82CPcRAkcmAKDoPmg2DJECIbxtuIVqhnin2RE+cACcCDMd
UWh4RhvdhZc5TGLuMTAGSrY=
=KZ8K
-----END PGP SIGNATURE-----
More information about the Users
mailing list