Mailinglist Archive: opensuse-security (670 mails)
| < Previous | Next > |
RE: [suse-security] vpn
- From: "Reckhard, Tobias" <tobias.reckhard@xxxxxxxxxxx>
- Date: Fri, 16 Nov 2001 08:46:41 +0100
- Message-id: <96C102324EF9D411A49500306E06C8D1A56C25@xxxxxxxxxxxxxxxxx>
> At home, I have a private net. I want pop requests from a client on
> 192.168.1.x to be forwarded via secure tunnel from my Nat host (Suse
> 7.2) to the colo machine (Suse 7.3). I'm no goot as ascii or I'd draw
> it.
>
If you've got Linux on both sides, it's rather simple to set up an IPSec
tunnel with FreeS/WAN. CIPE shouldn't be any more difficult, but I don't
have any practical experience with it. You should be able to throw NAT into
the FreeS/WAN mix, just make sure you NAT before the traffic hits the ipsec0
interface, but since SNAT occurs in the prerouting chain of the nat table,
you should be OK.
HTH
Tobias
> 192.168.1.x to be forwarded via secure tunnel from my Nat host (Suse
> 7.2) to the colo machine (Suse 7.3). I'm no goot as ascii or I'd draw
> it.
>
If you've got Linux on both sides, it's rather simple to set up an IPSec
tunnel with FreeS/WAN. CIPE shouldn't be any more difficult, but I don't
have any practical experience with it. You should be able to throw NAT into
the FreeS/WAN mix, just make sure you NAT before the traffic hits the ipsec0
interface, but since SNAT occurs in the prerouting chain of the nat table,
you should be OK.
HTH
Tobias
| < Previous | Next > |