From: Alistair Nelson (alistair.nelson_at_eb2b.com.au)
Date: Tue Aug 27 2002 - 04:50:36 CEST
Hi,
Hoping for some more newbie help... thanks to the people who have helped
out so much
already!
I have followed Nate Carlson's guide and setup a Freeswan gateway which
I intend to use for Win2K road warrior access into our internal network.
I can now ping the Freeswan gateway when the Win2K ipsec client is on
the
same subnet. Now I want to test in a real scenario:
Win2000 Road Warrior <> Internet <> IP Chains Firewall <> Freeswan
gateway on internal network
What's the best way to access the Freeswan gateway in this instance? We
have a DMZ however
I figured having the gateway on the internal network would make it more
secure from DMZ attacks
and mean that VPN connections should easily be able to route to the
internal network once
established with the gateway.
So can I simply get the firewall to forward all external<>internal udp
500 and protocols
50&51 to the freeswan gateway? How will this work, when the Win2K client
ipsec.conf
specifies a gateway IP address that is on an internal network that only
the firewall knows
about?
Would really appreciate any input on this scenario.
Kind regards,
Alistair.
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.4 : Tue Aug 27 2002 - 07:20:15 CEST