From: John Hunter (jdhunter_at_ace.bsd.uchicago.edu)
Date: Fri Jan 10 2003 - 18:27:50 CET
I have a typical NAT firewall router LAN that looks like and some WAN
hosts that I want to bring into the fold
WAN host <---> internet <---> firewall/router NAT (128.135.97.yyy)
128.135.97.xxx ^
|
-----------------
| | |
LAN1 LAN2 LAN3 192.168.1.*
Specifically, I would like to be able to configure the WAN host so
that it can see all the LAN clients. The reason for this is that I am
trying to set up a parallel computing network using MPICH. I have set
up snfs using sec_rpc and the WAN host can NFS mount the mpi dirs over
ssh, and each of the LAN clients can execute commands on the WAN host
with ssh. But it turns out that MPI requires that all the execution
hosts can communicate directly with one another, eg the WAN host needs
to be able to talk to LAN1, 2 or 3.
The LAN hosts are 192.168.1.* in the domain paradise.lost. For this
to work, I would need for the WAN host (which lives on the internet
and has a static IP 128.135.97.xxx) to be able to say, for example,
> ssh somehost.paradise.lost some_command
My question: is this possible with freeswan and some VPN? In other
words, can a WAN host be set up to see the private IP and domain
information of the LAN?
Thanks for any pointers or references to documentation. I have been
working my way through the freeswan documentation, but haven't learned
enough to know whether this kind of thing is possible.
John Hunter
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.5 : Sun Jan 12 2003 - 05:21:07 CET