There is an RPM for FreeSwan, an IPSEC client & server, available on the German FTP site @ 134.76.11.100. FreeSwan is not available in the US distribution of SuSE due to US export laws (grrr...). If you change your install source in yast to "ftp" and then reference the aforementioned ftp site, you can find this application under the SEC (security) applications. I believe that FreeSwan will also work w/ NAT for RFC 1918 (private) addresses. It is a little unclear in your message if the SuSE machine is serving as the VPN client or the firewall. If the Linux machine is serving as the client, then you would set up FreeSwan as a normal client with the firewall serving as a IPSEC gateway on the opposite end of the VPN. There are several different ways to configure an IPSEC VPN, w/ client-to-gateway being described in the IPSEC man pages included w/ FreeSwan. If the Linux server is serving the firewall, then you will need to install FreeSwan on the Linux box as a gateway and include the necessary NAT settings in your Linux kernel and firewall config files. The FreeSwan RPM included on the SuSE German ftp site is for FreeSwan 1.1. If you want to try to compile the application from source, you can find a newer 1.2 version on the FreeSwan home page @ http://www.xs4all.nl/~freeswan. Hope this helps. Drew Berendts -----Original Message----- From: Stephan Gerling [mailto:gerling@kub.de] Sent: Friday, January 14, 2000 3:12 AM To: 'suse-security@suse.com' Subject: [suse-security] Virtual Private Network Hi subscribers, Whats about VPN. I am looking for an solution to grant access to some user behind an Firewall on an private Network like 192.168........ Does anybody known about a way to do this with Linux??? thanks Stephan Gerling --------------------------------------------------------------------- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com