[Openswan Users] NATing tunnel traffic?
Andreas Steffen
andreas.steffen at strongsec.net
Sat Jun 23 05:26:34 EDT 2007
Paul Overton wrote:
> If you are using KLIPS then you can use iptables to SNAT your outgoing
> traffic through your ipsec tunnel.
>
> I believe it is possible with NETKEY, but I have not tried that.
>
Yes, it works with NETKEY if have a Linux kernel >= 2.6.16 and
iptables >= 1.3.5.
>
> Regards Paul
> --
>
>
>
> -----Original Message-----
> From: users-bounces at openswan.org [mailto:users-bounces at openswan.org] On
> Behalf Of Steve Goodrich
> Sent: 23 June 2007 03:42
> To: users at openswan.org
> Subject: [Openswan Users] NATing tunnel traffic?
>
> I am running openswan on openSUSE 10.2. It's a 2.6 kernel. I need to NAT
> all my traffic running over an IPSec tunnel so that it looks like it is
> coming from a specific private address. It isn't the address of our
> network. It is one a vendor provided.
>
> Is there any way to do this or am I going to have to spring for a Cisco?
>
>
> Steve Goodrich
> Longbody Computer Services, Inc.
> Riverton, Utah
> www.longbodycs.com
> _______________________________________________
Regards
Andreas
=======================================================================
Andreas Steffen e-mail: andreas.steffen at strongsec.com
strongSec GmbH home: http://www.strongsec.com
Alter Zürichweg 20 phone: +41 1 730 80 64
CH-8952 Schlieren (Switzerland) fax: +41 1 730 80 65
==========================================[strong internet security]===
More information about the Users
mailing list