* Joost van der Lugt wrote on Fri, Sep 07, 2001 at 01:12 -0700:
I am trying to set up VPN masquerading, for a Windows box,
Does this mean, you are trying to masquerade a VPN connection? This shouldn't work, since masquerading modifies the packet (it changes the source IP and port), and VPN implementation should detect that this packet is modified and should drop it.
(PS if there is someone familiar with setting upo VPN on the SuSe box itself, I would be very interested as well..., of course)
Well, I use freeswan in different versions of multiple hosts which runs nicely. Please note, that you can tunnel RFC1918 addresses from one network to another. In that case, you don't need masquerading. Imageing two locations, i.e. Berlin and Sydney. Berlin has 192.168.0.0/24 and Sydney uses 192.168.1.0/24. In that case, you can tunnel the 0.0 network to sydney and the 1.0 to berlin. For the clients in the networks it looks as berlin and sydney are connected directly. For the "internet" it look like the routers (which need a single official IP) talk a lot with IP protocol 50 to each other. In those IP proto 50 packets the packages from 0.0<->1.0 are included - but invisible since encrypted. oki, Steffen -- Dieses Schreiben wurde maschinell erstellt, es trägt daher weder Unterschrift noch Siegel.