[Openswan Users] Configuration Help
Paul Wouters
paul at xelerance.com
Thu Feb 8 12:06:20 EST 2007
On Thu, 8 Feb 2007, Josh wrote:
> I think I have multiple problems here. One of them being me. After talking
> to our network department they have stated that the setup is a 1 to 1 NAT.
> Unfortunately I provided the wrong address for System B since it is not on
> the same network. Its address is 100.100.109.3 as the public address. So
> my connection looks like this:
>
> SystemA (100.100.110.2) --->(100.100.109.3)NAT--->SystemB(192.168.1.3)
>
> So I am trying to find a good example online that would mimic this setup so
> I could use their config file but I am confused when I so no explanation as
> to what the following key words mean:
on system a:
in config setup:
nat_traversal=yes
in conn systema-systemb:
left=100.100.110.2
leftrsasigkey=
right=192.168.1.3
rightrsasigkey=
auto=start
on system b:
in config setup:
nat_traversal=yes
virtual_private=%v4:100.100.110.0/24,%v4:!192.168.1.0/24
in conn systema-systemb:
left=192.168.1.3
leftrsasigkey=
right=%any
rightrsasigkey=
auto=add
Values for the rsa keys can be obtained by running: ipsec showhostkey --left or
ipsec showhostkey --right on those systems.
Paul
--
Building and integrating Virtual Private Networks with Openswan:
http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
More information about the Users
mailing list