[Openswan Users] configuration question
Mads Rasmussen
mads at grupof.com.br
Fri Jan 28 20:34:04 CET 2005
Trying to setup a net-to-net configuration
xxx.dyndns.org <--> yyy.dyndns.org
| |
10.30.0.0/16 10.20.0.0/16
My plan is to connect the two subnets and make workstations on the 10.30
subnet see the stations on the 10.20 subnet and visa versa.
The xxx gateway does NAT for the 10.30 subnet as does yyy for the 10.20
subnet.
Here is how I would set it up on the left gateway.
Would someone please have a look to see if it make sense
Thanks
Mads
---
config setup
interfaces="ipsec0=ppp0"
klipsdebug=all
plutodebug=all
# Close down old connection when new one using same ID shows up.
uniqueids=yes
# default settings for connections
conn %default
authby=rsasig
left=xxx.dyndns.org
leftcert=xxx-gw.pem
rightrsasigkey=%cert
# leftupdown=/usr/lib/ipsec/_updown_custom -> doesn´t seem to work
pfs=yes
auto=add
conn dino
right=yyy.dyndns.org
leftsubnet=10.30.0.0/16
rightsubnet=10.20.0.0/16
leftid="/C=BR/ST=Sao Paulo/O=Grupo F Arquitetura/OU=TI/CN=xxx.dyn
dns.org"
--
No virus found in this outgoing message.
Checked by AVG Anti-Virus.
Version: 7.0.300 / Virus Database: 265.7.5 - Release Date: 26/1/2005
More information about the Users
mailing list