16 Nov
2001
16 Nov
'01
07:46
At home, I have a private net. I want pop requests from a client on 192.168.1.x to be forwarded via secure tunnel from my Nat host (Suse 7.2) to the colo machine (Suse 7.3). I'm no goot as ascii or I'd draw it.
If you've got Linux on both sides, it's rather simple to set up an IPSec tunnel with FreeS/WAN. CIPE shouldn't be any more difficult, but I don't have any practical experience with it. You should be able to throw NAT into the FreeS/WAN mix, just make sure you NAT before the traffic hits the ipsec0 interface, but since SNAT occurs in the prerouting chain of the nat table, you should be OK. HTH Tobias