RE: [Users] Novell IPX over ipsec tunnel

From: Greg Scott (GregScott_at_InfraSupportEtc.com)
Date: Fri Dec 13 2002 - 18:47:50 CET

• Next message: Matthias Gorjup: "Re: [Users] Question from Confused user who has read the docs"
• Previous message: Justin Kreger: "[Users] Can't Subscribe"
• Maybe in reply to: Darcy Brodie: "[Users] Novell IPX over ipsec tunnel"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

There should be a writeup on GRE tunnels in the Linux Advanced Routing howto. There should be a pointer to it here: http://www.lartc.org Scroll down about 2/3 of the way and follow the links. This howto assumes you're doing GRE across a real, physical interface. I imagine you would just substitute, say, ipsec0 for, say, eth0 in the writeup.

- Greg Scott

-----Original Message-----
From: Darcy Brodie [mailto:dbrodie_at_plaa.org]
Sent: Friday, December 13, 2002 9:48 AM
To: Ken Bantoft
Cc: users_at_lists.freeswan.org
Subject: Re: [Users] Novell IPX over ipsec tunnel

I have read in several placees about using the GRE but I have not found
any instructions on HOW-TO add it to the vpn. Anyone know of a HOW-TO
that could assist me with this?? I have found the ip_gre.o module, but
not sure where to insert it, or anything else that I have to do to get
it to work.

Your assitance is greatly appreciated

Darcy Brodie

Ken Bantoft wrote:

>-----BEGIN PGP SIGNED MESSAGE-----
>
>
>You'll probably need to look into adding a GRE tunnel overtop of the IPSec
>tunnel. Either that or l2tpd.
>
>IPSec will only tunnel TCP/IP packets, not IPX, so you'll never see an IPX
>packet go over the tunnel without some assistance from GRE or the L2TP
>daemon. Of course, the simplest solution is to convert from IPX -> IP on
>the Novell side, but usually if you are still using IPX today, there's a
>good reason why that hasn't happened.
>
>
>On Thu, 12 Dec 2002, Darcy Brodie wrote:
>
>
>
>>Hello
>>I am looking for a how-to (the more detailed the better) on how to set
>>up a vpn between 2 sites and be able to log into a Novell network from
>>the remote location. I do have the ipsec vpn up and running (I can ping
>>in both directions, and even ssh from the remote location into one of
>>the linux servers at the main location), but it will not connect to the
>>Novell server (the Novell is set to IPX format). I can not even browse
>>any of the Novell trees
>>
>>
>
>
>
>- --
>Ken Bantoft The Unoffical FreeS/WAN Site:
>ken_at_freeswan.ca http://www.freeswan.ca
> PGP Key: finger ken_at_bantoft.org
>"We can factor the number 15 with quantum computers. We
>can also factor the number 15 with a dog trained to bark
>three times." -- Robert Harley, 5/12/01, Sci.crypt
>
>-----BEGIN PGP SIGNATURE-----
>Version: 2.6.3ia
>Charset: noconv
>
>iQCVAwUBPfnd1FiWUusaxGxpAQGBXQP/ag07aB6fY/1Yr6swo52p+gFzVVf5+e/5
>xL3dAq0PUTQ2Ih4XvU3yK2QU+6RG+dVU75zpAe3pfyeY4EtegO/UJpRKg9JAHX3t
>6di4F33isNc6nJW0Pz9OX/fivwxMcoYRp5dMweAsgeCuYzXm7UbKF8e7TO/Su+/u
>mPuy8/juXGI=
>=Xf71
>-----END PGP SIGNATURE-----
>
>
>
>

_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users

_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users

• Next message: Matthias Gorjup: "Re: [Users] Question from Confused user who has read the docs"
• Previous message: Justin Kreger: "[Users] Can't Subscribe"
• Maybe in reply to: Darcy Brodie: "[Users] Novell IPX over ipsec tunnel"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.5 : Sat Dec 14 2002 - 05:21:06 CET