[Openswan Users] Am I thinking on the right lines here?

Jorge Davila davila at nicaraguaopensource.com
Mon Jul 24 13:40:18 CEST 2006

Once the encrypted packet hit the external interface on the server is 
decrypted then, the new packet (that is the original packet with the 
port/protocol to communicate with the ssh server) is delivered.

Yes, is the normal behaviour.

Hope this help.

Jorge Dávila.

On Mon, 24 Jul 2006 19:05:05 +0100
  John <John at DMJ-Consultancy.co.uk> wrote:
> I'm a little confused and hope the you will be able to allay my concerns.
> Workstation ---- SubNet 1 ------ Server =========== DSL router ------ 
>SubNet 2 ----- laptop
> I have, at last, succeeded in getting a VPN (shown as ===== above) between 
>the two halves of my network. However, when I tried to open an SSH terminal 
>across this link (from laptop to server), I was surprised to have to open 
>the relevant port in the host's firewall.
> Is this normal as I thought that the VPN would tunnel traffic through the 
> Also, should my laptop be able to recognise the server as a DNS server?
> Many thanks, in advance,
> John
> _______________________________________________
> Users at openswan.org
> http://lists.openswan.org/mailman/listinfo/users
> Building and Integrating Virtual Private Networks with Openswan: 

Jorge Isaac Davila Lopez
+505 808 2478

More information about the Users mailing list