 |
| Register | FAQ | Members List | Calendar | Links | Search | Today's Posts | Mark Forums Read |
|
||||||||
|
|
#1
02-25-2005, 01:46 AM
|
linux VPN solution
hello,
in a stanard cisco VPN solution one method is to user say a router-to-router or router-to-concentrator vpn whereby each end negotiates IPSEC tunnels and any traffic that is directed to hosts on the other sides of those VPN's are, via ACL's, directed down the tunnel. my question: is there a way of establishing the samething using linux + iptables. for example lets say we had two sites, A and B, A having a linux firewall, B having a cisco router/concentrator. now on B's lan there was a host C. if hosts in site A say telneted to C is there a way of forwarding those packets over a 3DES encrypted IPSEC tunnel? will freeswan do this or is freeswan simply a server/client solution - does it have the ability to establish a tunnel once it sees traffic destined for a destination and then have traffic forwarded through that tunnel (as with the usual cisco router-to-router solution) cheers moth rancid moth 
|
|
#2
02-26-2005, 07:45 PM
|
|||
|
|||
|
Re: linux VPN solution
FreeSWan just does this!
You can establish a VPN IPSEC tunnel between two sites, each one provided with a linux gateway running FreeSWan software. I believe that you can do this using a Cisco router at one side, but I never tried this. Bye Dam rancid moth wrote: > hello, > > in a stanard cisco VPN solution one method is to user say a > router-to-router or router-to-concentrator vpn whereby each end negotiates > IPSEC tunnels and any traffic that is directed to hosts on the other sides > of those VPN's are, via ACL's, directed down the tunnel. > > my question: is there a way of establishing the samething using linux + > iptables. for example lets say we had two sites, A and B, A having a > linux > firewall, B having a cisco router/concentrator. now on B's lan there was > a > host C. if hosts in site A say telneted to C is there a way of > forwarding > those packets over a 3DES encrypted IPSEC tunnel? will freeswan do this > or is freeswan simply a server/client solution - does it have the ability > to establish a tunnel once it sees traffic destined for a destination and > then have traffic forwarded through that tunnel (as with the usual cisco > router-to-router solution) > > cheers > moth
|
 |
| Tags |
| linux, solution, vpn |
| Thread Tools | |
| Display Modes | |
|
|
Linear Mode
