*******Hello everyone,
********I need help to configure a vpn tunnel from a gateway I have at
69.70.21.108
to etdvpn.sabre.com (151.193.130.125, 151.193.130.121, *151.193.130.122,
151.193.130.123, 151.193.130.124). I have a 2.6.11 kernel with all needed
stuff inside, however I can not conceive how to make security policies,
especially of how to make the routing of packets via the tunnel.
********What I know: The link is usually done with Nortell 100S box in
branch-office
mode; this is supported by FreeSwan and Linux 2.6 native ipsec
implementation. I want to use linux native tools with racoon/setkey; kernel
is compiled OK, the problem is how to make security policy:
********On the remote site, behind etdvpn.sabre.com *I have two networks:
151.193.141.0/24 and 151.193.172.132/30; this should be not a problem to
configure, but when I connect my side of the tunnel should have
10.126.23.143/32 as an address - they assign me this addres. I am not clear
at all how do I assign this address to the tunnel and how do I create
appropriate routing for all packets to the two remote networks to pass via
this virtual interface, with of course NAT, as my network is visible for
them as one address(10.126.23.143).
********Connection is with pre-shared keys, hmac-md5, 3des, aggressive mode.
********Some ideas?
********Thanks, George.
|
Similar Threads
Linear Mode
