Re: [opensuse] ssh through vpn tunnel, openSUSE 11.4

On 07/27/2011 05:18 PM, Istvan Gabor wrote:

2011. július 27. 21:53 napon Robert Schweikert írta:

...

On 07/27/2011 03:30 PM, Istvan Gabor wrote:

...

Hello:

As I could not make Cisco vpnclient work in openSUSE 11.4 I have to look for another solution. Therefore I installed and configured shrew/ike as described at http://forums.opensuse.org/english/get-technical-help-here/how-faq-forums/un...

I can start ikea, load the vpn profile and can connect. Shrew soft VPN Connect windows shows:

bringing up tunnel... network device configured tunnel enabled

But there is no traffic through the tunnel, eg. I can't connect to other computers by ssh:

~> ssh -vvv -p 146 10.10.3.66 OpenSSH_5.8p1, OpenSSL 1.0.0c 2 Dec 2010 debug1: Reading configuration data /etc/ssh/ssh_config debug1: Applying options for * debug2: ssh_connect: needpriv 0 debug1: Connecting to 10.10.3.66 [10.10.3.66] port 146.

ssh stops at this point.

I really need vpn connection, how could I fix this?

Any particular reason you are not using vpnc to establish the vpn connection to the Cisco backend?

I tried it once but could not make it work. And it required network-manager, if I remember well, which I don't want to use. (The best would be if I could setup cisco vpnclient.)

It appears to me that Cisco has given up on maintaining their proprietary code. There hasn't been an update that builds on a recent kernel in a long time and their 64 bit support was always iffy. Not really surprising as it is difficult to keep up with the rate of change in the kernel. vpnc does not need network manager. Setting up vpnc to a Cisco backend is pretty straight forward. You have to make sure the tun module is loaded, configure your /etc/vpnc.conf file and off you go. If you only have an encrypted pass phrase from your Cicso config file it can be decrypted here: http://coreygilmore.com/projects/decrypt-cisco-vpn-password/ The Gentoo instructions for vpnc are very useful, section 5 shows the config file setup. http://www.gentoo.org/doc/en/vpnc-howto.xml Sorry I cannot help with shrew. Hope things work out for you. Good luck, Robert -- Robert Schweikert MAY THE SOURCE BE WITH YOU SUSE-IBM Software Integration Center LINUX Tech Lead rjschwei@suse.com rschweik@ca.ibm.com 781-464-8147 -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org