[Openswan Users] IPsec VPN with SNAT

Prashant Mulik mulikpa at hotmail.com
Wed Feb 4 02:58:05 EST 2009

Hi Freinds,
I have configured Site-to-Site Ipsec VPN where I have used Openswan at my end and Checkpoint FW1 at other end.
I The setup is as described below.
Right side- Myside-A    
   Eth0 - internal interface (
   Eth1- external interface (A,B,C,D)
Left side - Remote-B.
   Eth0 - internal interface (
   Eth1 - external interface (W,X,Y,Z)
Now after istablishing the tunnel, Remote-B wants Myside-A should NAT traffic to (as per RFC 1918) rather than ETH1 (A,B,C,D)
This is to make my VPN secured by hiding my Real IP. Hence whatever request will go from my network will go as IP.
I tried doing SNAT but still my requests are reaching through Eth0 to the destination network.
Can you please help and tell me whether I am doing right thing or not. If not then what should be the setup.
Thanks in advance
Prashant M

Find a better job. We have plenty. Visit MSN Jobs
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20090204/8734b968/attachment.html 

More information about the Users mailing list