[olug] Cisco IPSec vpn behind Linux 2.4 NAT box?
djalexander at cox.net
djalexander at cox.net
Thu Mar 31 18:10:41 UTC 2005
I run a linux firewall ditro called IPCop
(http://ipcop.sourceforge.net) which is based on kernel 2.4 and
iptables. As far as I can tell, I don't have to do anything to allow
my clients to connect to ipsec based VPNs. I regularly connect to an
ipcsec VPN simultaneously from multiple machines on he LAN with no
additional rules or kernel modules. This may be because my Cisco VPN
client does NAT-T. It's the only client I have ever used on this
particular setup, so YMMV.
I hope this helps.
On Mar 30, 2005, at 3:02 PM, Adam Haeder wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Does anyone have experience connecting to a Cisco VPN that is on a
> private
> IP subnet behind a Linux box doing NAT? The Linux box is RedHat9 with
> the
> 2.4 kernel. If it's possible/easy, what would an iptables script look
> like
> to enable it? TIA
>
> - --
> Adam Haeder
> Vice President of Information Technology
> AIM Institute
> adamh at omaha.org
> (402) 345-5025 x115
> PGP Public key: http://www.haederfamily.org/pgp.html
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.2.4 (GNU/Linux)
>
> iD8DBQFCSxPKbHC3IXlHqBQRAvH/AJ906SmSL9oQwx0rD7tlW32TkToj4QCgl86l
> dYI9kMrjRwE7f0pVQvyqHAQ=
> =6KQ/
> -----END PGP SIGNATURE-----
> _______________________________________________
> OLUG mailing list
> OLUG at olug.org
> http://lists.olug.org/mailman/listinfo/olug
--
Darren Alexander
Unix System Administrator
Meridian, Inc.
4805 G. St.
Omaha, NE 68117
(402) 501-7510
More information about the OLUG
mailing list