Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email firstname.lastname@example.org
Re: AW: [suse-security] IPSEC plus SuSEFfrewall2
From: John Lederer (johnjhml.org)
Date: Mon Jun 30 2003 - 09:02:48 CDT
I should have been clearer.
I want subnet-to-subnet.
It doesn't work on a ping between machines in the subnets, so I am
Uli Wurst wrote:
>Von: John Lederer [mailto:johnjhml.org]
>Gesendet: Sonntag, 29. Juni 2003 19:52
>Betreff: [suse-security] IPSEC plus SuSEFfrewall2
>>I am struggling to get a vpn working between two Suse 8.2 boxes.
>> leftrsasigkey=[keyid AQOyimW2p]
>> rightsubnet=10.1.0.0/255.255.0.0 #
>> rightid=stpeter.ipsec.con #
>> rightrsasigkey=[sums to 7873...]
>IIRC this will only create a tunnel between the networks, NOT between your
>two IPSEC-Gateways. Try to ping between two machines within the right- and
>leftsubnet and it should work. If you want tunneled communication beween the
>two gateway-machines you will have to add a section
> leftrsasigkey=[keyid AQOyimW2p]
> rightsubnet=10.1.0.0/255.255.0.0 #
> rightid=stpeter.ipsec.con #
> rightrsasigkey=[sums to 7873...]
>on both ends of the tunnel (the "leftsubnet" on the left gateway's side has
>been left out, so this would be from golum's ipsec.conf). On stpeter's side
>you have to delete the rightsubnet line.
Check the headers for your unsubscription address
For additional commands, e-mail: suse-security-helpsuse.com
Security-related bug reports go to securitysuse.de, not here