Hello,
I have a Server with RH 7.3, now I can use it to create a vpn to other =
office and so I decided to use VTun, now I set shorewall and vtun, but =
on vtun site and on shorewall site I don't found nothing to set them =
together.
Now I would set Vtun server so:
--------------- server -------------------
up {
ifconfig "%% 192.168.1.254 pointopoint 192.168.2.254 mtu 1450";
route "add -net 192.168.2.0 netmask 255.255.255.0 gw 192.168.2.254";
program "/sbin/arp -sD 192.168.1.254 eth1 pub";
};
down {
program "/sbin/arp -d 192.168.1.254 -i eth1";
};
------------------ end server --------------
and I would set my vtun on client so:
------------------- client ------------------
up {
ifconfig "%% 192.168.2.254 pointopoint 192.168.1.254 mtu 1450";
route "add -net 192.168.1.0 netmask 255.255.255.0 gw 192.168.1.254";
program "/sbin/arp -sD 192.168.2.254 eth1 pub";
};
down {
program "/sbin/arp -d 192.168.2.254 -i eth1";
};
------------------- end ---------------------
now I would set my policy in shorewall so:
-------------- policy ---------------
net loc ACCEPT
loc net ACCEPT
------------end-----------------
infact I use it not as firewall but only to do router.......
P.s. behind vpn I have LAN that work with other office
LAN A< -- > VPN Client < -- > Internet < -- > VPN Server < -- > LAN B
and so LAN A and LAN B must comunicate.... it is possible with this =
configuration ??
Now I ask you if this configuration can working ????
Best regards
Matteo
PPPPSSSSS---------------->>>> Sorry for my english !!!!
|