Re: [PLUG] S/WAN song

Chad Vogelsong on 25 Aug 2008 19:03:41 -0700

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] S/WAN song

From: Chad Vogelsong <csv@gamebox.net>

To: Philadelphia Linux User's Group Discussion List <plug@lists.phillylinux.org>

Subject: Re: [PLUG] S/WAN song

Date: Mon, 25 Aug 2008 22:03:33 -0400

Reply-to: Philadelphia Linux User's Group Discussion List <plug@lists.phillylinux.org>

Sender: plug-bounces@lists.phillylinux.org

I can tell you right now that your going to run into difficulties, if not actual problems right now. The issue is with your LAN IP address. It should not be the same for both ends of the VPN, especially if you are going to try to do a subnet over VPN.

The simple solution is keep one at 192.168.1.1 / 255.255.255.0 and make the other 192.168.2.1 / 255.255.255.0. Then on the left end point (1.1), you can say that 2.1 subnet goes to VPN tunnel. Just the opposite on the right host (2.1), where 1.1 subnet gets routed to VPN tunnel.

You just have to find some common terms between them. IKE, PKE, AES-128 or 256, timeouts, etc. VPN's are nothing but an exercise in matching up available configuration options between different manufacturers and software. Find what they support in common.

Chad

On Mon, 2008-08-25 at 16:03 -0400, Matthew Rosewarne wrote:

I'm trying to set up an IPSEC tunnel between a server running OpenS/WAN and a Linksys WRV54G VPN router. While I've read the documentation for both, I still don't quite get how the local & remote (or "left" & "right") networks are supposed to be configured. At the moment each gateway device has the LAN IP address 192.168.1.1 and netmask 255.255.255.0. It's not clear to me how the left & right IP, Next Hop, and subnets should be configured, especially since OpenS/WAN and the WRV54G use different terminology. Does anyone have any experience either with *S/WAN and/or Linksys VPN routers? ___________________________________________________________________________ Philadelphia Linux Users Group -- http://www.phillylinux.org Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug

___________________________________________________________________________ Philadelphia Linux Users Group -- http://www.phillylinux.org Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug

References:

[PLUG] S/WAN song
From: Matthew Rosewarne <mrosewarne@inoutbox.com>

Prev by Date: Re: [PLUG] PLUG Logo! And LinkedIn

Next by Date: Re: [PLUG] S/WAN song

Previous by thread: Re: [PLUG] S/WAN song

Next by thread: Re: [PLUG] S/WAN song

Index(es):

Date

Thread