No, I'm dialing to an ISP.
And this is my connection in ipsec.conf:
conn linux-encdom
type=tunnel
left=<my-fw1-external-ip>
leftnexthop=<my-internet-router>
leftsubnet=<my-private-net>
right=%defaultroute
rightsubnet=192.168.30.0/24 <-- net behind freeswan
keyexchange=ike
auth=esp
pfs=no
auto=add
Domenico Viggiani
> -----Original Message-----
> From: Leonardo Rodrigues Magalhães [mailto:leonardo_at_solucoesip.net]
> Sent: Wednesday, May 08, 2002 5:07 PM
> To: Teemu Torma; freeswan
> Subject: Re: [Users] FreeS/WAN with PPP
>
>
>
> If I understand you, this is working because the user is
> DIALLING to the
> same machine the ipsec tunnel is being established with ....
>
> So, in the case of using a PPP connection to a normal ISP
> around the
> world to establish the IPSEC connection to a Freeswan
> machine, rightnexthop
> WOULD have to be configured correctly, or it wouldnt work .....
>
> Is this OK ?
>
> Sincerily,
> Leonardo Rodrigues
>
> ----- Original Message -----
> From: "Teemu Torma" <teemu_at_torma.org>
> To: "freeswan" <users_at_lists.freeswan.org>
> Sent: Wednesday, May 08, 2002 11:09 AM
> Subject: Re: [Users] FreeS/WAN with PPP
>
>
> > On Wednesday 08 May 2002 15:06, Mimmus wrote:
> > > I used a modem PPP connection to test FreeS/WAN with our company
> firewall
> > > (FW1).
> > > After getting and IP address, I configured things as we
> have a static IP
> > > address.
> > > All works well if I left unconfigured 'rightnexthop'
> parameter. Is it
> > > normal?
> > > What is the exact explanation?
> >
> > If rightnexthop is not set, the assumption is that it is
> same as right,
> which
> > is true in your case.
> >
> > Teemu
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.3 : Mon Jul 29 2002 - 05:19:58 CEST