[Openswan Users] Imitating the Internet

[Jerry Kaidor]

Hello,

   I'd like to play with Openswan without going out onto the Internet -
mainly because I only have one broadband connection.  In the past, I've
gotten links working by using a dial-in from my laptop, but that's painful
because it's so slow.

   I do have a pile of Linksys WRT54G wireless routers, and I was thinking
of using one as a second "Internet".  The router would be connected to
my main Linux box through a dedicated ethernet card.  Since the
external machine I'm setting up right now has wireless, one WRT54G
would do it, but
there would be no NAT to test the NAT-T functionality.

   I could use a second WRT54G running openWRT in host mode to do NAT, and
connect it to the PC under test with an ethernet link.  Heck, I could
even use a third WRT54G to provide wireless-with-NAT to the unit under
test ( yes, I do have that many! ), but I think that's unnecessarily
elaborate.


   It looks like the "interfaces" line in ipsec.conf will let me set up
a second ipsec device besides the one that points at the Internet.

   Anybody done anything like this?  I'm trying to get both roadwarriors
and fixed remote subnets set up.

                   - Jerry Kaidor ( jerry at tr2.com )