From: Matthias Gorjup (matthias.gorjup_at_siol.net)
Date: Fri Dec 13 2002 - 18:45:18 CET
Hi,
I was also very confused so I have written this simple how-to`s about first
steps with freeswan package.
Hope it will help.
Bye
Matthias Gorjup
-- IT CONSULTING Matthias Gorjup s.p. Preloge pri Konjicah 37 3210 Slov. Konjice Slovenia Tel.: + 386 41 540 545 On Friday 13 December 2002 16:33, Steven M. Castellotti wrote: Hey all-- > > I've ready through all of the documentation I could find on the > freeswan.org site and through articles in google, and am still confused > about how to work out the details of the setup I'm trying to achieve. > Any help would be greatly appreciated > > > Initial goal: > > Laptop == Server > > Laptop real IP: 172.16.1.51 > VPN IP: 10.1.1.2 > > Server real IP: a.b.c.d > VPN IP: 10.1.1.1 > > > I can establish a Road Warrior connection from the laptop to the server > (though I haven't been able to test it properly) but what I really want > to do is talk to the server from the laptop by referencing 10.1.1.1, and > vice versa in accessing the laptop from the server. > > > > > Eventual Goal: > > A > /|\ > B-|-C > \|/ > D > > Multi-site network with 10.1.0.0 at one site, 10.2.0.0 at another site, > 10.3.0.0 at another, and so on, with each machine being able to refer to > the other machines through their private IP's only, without having to > deal with actual Internet IP addresses. > > > > > What I'm having trouble with is figuring out how to set up the > ipsec.conf files, and whether or not I need virtual interfaces on each > individual machine. My current setup (Road Warrior Laptop <-> Server) > looks like this: > > > Laptop: > > conn rshc > left=%defaultroute # Picks up our dynamic IP > leftid=@laptop # Local information > leftrsasigkey=0sA... > right=a.b.c.d # Remote information > rightsubnet=10.0.0.0/255.0.0.0 # > rightid=@www.abcd.org # > rightrsasigkey=0sA... > auto=add # authorizes but doesn't start this > # connection at startup > > > > Server: > > conn rshc > left=a.b.c.d # Gateway's information > leftid=@www.abcd.org # > leftsubnet=10.0.0.0/255.0.0.0 # > leftrsasigkey=0sA... > rightnexthop=%defaultroute # correct in many situations > right=%any # Wildcard > rightid=@laptop # > rightrsasigkey=0sA... > auto=add # authorizes but doesn't start this > # connection at startup > > > > Does what I'm trying to do make sense? Is there something I'm missing? > > > -Steve Castellotti > SteveC (at) Innocent.com > > _______________________________________________ > Users mailing list > Users_at_lists.freeswan.org > http://lists.freeswan.org/mailman/listinfo/users
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.5 : Sat Dec 14 2002 - 05:21:06 CET