[Openswan Users] FW: Gateway to gateway without router in one endpoint?

Jose M soloninguno at hotmail.com
Sat Jun 8 00:51:58 UTC 2013 

Dan, thanks for your response

My current configuration is this (fake ips only).

ipsec.conf
conn %default
    authby=secret
    type=tunnel
    left=78.222.51.10

conn linux-rv042
    auto=add
    right=81.18.24.120
    rightsubnet=192.168.1.101/32
    authby=secret
    ike=aes256-sha1;modp1536
    esp=aes256-sha1;modp1536
    pfs=yes
    aggrmode=no    

The
 cisco ipsec vpn (rv042g router) is also configured as a client to 
gateway, cause I don't have a real network right now in the ubuntu 
client. Here is a picture of it http://tinypic.com/view.php?pic=k34tqr&s=5

This
 configuration works ok, but is more like a "client to gateway" one, not
 a "gateway to gateway". So it's only a one way traffic and the machines
 inside the netowork can't see the client.

As I don't have much 
knowledge about networks/vpns, my question is more related to seed if I 
can do something like a private network in my ubuntu server client, to 
make the two ways traffic work (configuring the rv042g router as a 
gateway to gateway instead of a client to gateway).

Thanks in advance!


Date: Fri, 7 Jun 2013 20:49:15 +0000
From: dan.cave at me.com
To: soloninguno at hotmail.com
Subject: Re: [Openswan Users] Gateway to gateway without router in one endpoint?

have you got a private network setup on the ubuntu server and have you got a route or both servers networks so they can see each other

Please post your ipsec .conf and ip addr from the Linux host as well as the Cisco config... And logs from both sides if possible..

Sent from Samsung Mobile 



-------- Original message --------
Subject: [Openswan Users] Gateway to gateway without router in one endpoint? 
From: Jose M  
To: users at lists.openswan.org 
CC:  



From: soloninguno at hotmail.com
To: users at lists.openswan.org
Subject: Gateway to gateway without router in one endpoint?
Date: Fri, 7 Jun 2013 16:35:12 -0300




I need to create an ipsec vpn between an internal network behind a cisco router and
 an ubuntu server in the outside that is directly connected to the web (no 
router here).

Right now I've test openswan to create a client to gateway vpn an works as expected. Unforunately with this configuration I don't have two way traffic, the client sees the internal network, but the network can't see the client.

My knowledge of networks isn't the best, so I need to ask, is it possible to create some kind of virtual nics in ubuntu client server to simulate a gateway and an internal network (with only one machine) in this endpoint, so the machines in the internal network can see this client?

Thanks in advance!


 		 	   		   		 	   		   		 	   		  
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openswan.org/pipermail/users/attachments/20130607/e54c9b75/attachment-0001.html>

More information about the Users mailing list