[Openswan Users] Newbie help please

Kean Johnston kean.johnston at gmail.com
Thu Jun 3 00:50:47 EDT 2010 

Hello everyone, I really need some help. Most likely quite a lot of it.
I am a bit of a networking neophyte but I can compile and install anything
I need to. I just need help setting up my network. I will attempt to draw
my current setup in ASCII:

+--------------+  +--------------+  +--------------+
| 192.168.1.42 |  | 192.168.1.43 |  | 192.168.1.44 |
+--------------+  +--------------+  +--------------+
        \                 |                 /
         \                |                /
          +-------------------------------+
          | Netgear DG834 - 192.168.1.1   |
          +-------------------------------+
                         ^
                         | Internet - public IP assigned by DHCP
                         v
          +-------------------------------+
          | randomsite.com (any TCP/UDP)  |
          +-------------------------------+
            * Sees my IP address as public IP assigned by DHCP.

Pretty standard. I have my home machines behind a DSL router (Netgear
DG-834v4) that has a private IP of 192.168.1.1. All other hosts in my
home network are 192.168.1.XXX. My ISP assigns me a public IP address
via DHCP. When I connect to randomsite.com it goes from my PC to the
router, to my ISP's router to the net at large to randomsite.com.

What I *WANT* to achieve is the following:

+--------------+  +--------------+  +--------------+
| 192.168.1.42 |  | 192.168.1.43 |  | 192.168.1.44 |
+--------------+  +--------------+  +--------------+
        \                 |                 /
         \                |                /
          +-------------------------------+
          | Netgear DG834 - 192.168.1.1   |
          +-------------------------------+
                         ^
                         | Internet - public IP assigned by DHCP
                         v
          +-------------------------------+
          | ISP and the internet at large |
          +-------------------------------+
                         ^
                         | VPN over the Internet
                         v
          +-------------------------------+
          | USA host 64.65.66.67 (Linux)  |
          +-------------------------------+
                         ^
                         | Internet
                         v
          +-------------------------------+
          | randomsite.com (any TCP/UDP)  |
          +-------------------------------+
            * Sees my IP address as 64.65.66.67

I have a site on a high-speed server that I want to tunnel all of my
network traffic through. Far as as anyone or anything on the internet
is concerned, I am sitting on that host.

I am sure there are two parts to this: setting up OpenSWAN and setting
up IP masquerading. I know how to do neither, and the howto's and docs
I have read all assume a greater degree of knowledge than I possess, or
don't seem to support the above configuration, which I am sure must be
possible somehow. The Netgear does support VPN stuff.

Please can anyone help me set this up? I would be very much obliged.
Thanks in advance.

More information about the Users mailing list