[Openswan Users] IPsec VPN with SNAT
Prashant Mulik
mulikpa at hotmail.com
Wed Feb 4 02:58:05 EST 2009
Hi Freinds,
I have configured Site-to-Site Ipsec VPN where I have used Openswan at my end and Checkpoint FW1 at other end.
I The setup is as described below.
Right side- Myside-A
Eth0 - internal interface (192.168.30.0/24)
Eth1- external interface (A,B,C,D)
Left side - Remote-B.
Eth0 - internal interface (10.95.0.0/11)
Eth1 - external interface (W,X,Y,Z)
Now after istablishing the tunnel, Remote-B wants Myside-A should NAT traffic to 172.20.1.1 (as per RFC 1918) rather than ETH1 (A,B,C,D)
This is to make my VPN secured by hiding my Real IP. Hence whatever request will go from my network will go as 172.20.1.1 IP.
I tried doing SNAT but still my requests are reaching through Eth0 to the destination network.
Can you please help and tell me whether I am doing right thing or not. If not then what should be the setup.
Thanks in advance
Regards,
Prashant M
_________________________________________________________________
Find a better job. We have plenty. Visit MSN Jobs
http://www.in.msn.com/jobs
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20090204/8734b968/attachment.html
More information about the Users
mailing list