Anonymous's picture

Re: Setting up a VPN Gateway

On January 30th, 2002 Anonymous says:

I almost have this working - I can make an SA to the DUCLING VPN Gateway, and can ping the eth1 (internal DUCLING LAN interface), but cannot ping any of the internal LAN IPs. The SSH Sentinel Diagnostics indicate that I can make an "IPSec protected connection to the remote host". Here's what I had to do to get this far:

-------------------------

In the network.conf file, to allow port 500 from any external IP address (roadwarrior), I added the line:

EXTERN_UDP_PORTS="0/0_500"

-------------------------

In the ipfilter.conf file, to allow ports 50 and 51 from any IP address that had made an SA, I uncommented and modified lines:

$IPCH -A input -j ACCEPT -i eth0 -p 50 -s 0/0 -d 0/0

$IPCH -A input -j ACCEPT -i eth0 -p 51 -s 0/0 -d 0/0

------------------------

Where do I go from here? There must be something I'm missing since Duncan was able to use the exact same disto w/o problems?

Thanks for any help.

David W.

Reply

Please note that comments may not appear immediately, so there is no need to repost your comment.
The content of this field is kept private and will not be shown publicly.
  • Allowed HTML tags: <a> <em> <strong> <cite> <code> <pre> <ul> <ol> <li> <dl> <dt> <dd> <i> <b>
  • Lines and paragraphs break automatically.

More information about formatting options

Newsletter

Each week Linux Journal editors will tell you what's hot in the world of Linux. You will receive late breaking news, technical tips and tricks, and links to in-depth stories featured on www.linuxjournal.com.
Sign up for our Email Newsletter

Featured Videos

Set up a secure virtual host in Apache

December 22nd, 2008 by Elliot Isaacson in

Setting up an https server in Apache is easy. This tutorial covers how to create and sign your ssl certificate as well as how to configure the web server.

See more Linux Journal Videos

From the Magazine

January 2009, #177

It's a battle as old as time: good vs. evil. Fortunately, Linux and FOSS are on our side as we wage the battle against those who try to steal our secrets and invade our systems.

Checking your system's security is best done sooner rather than later. Test the locks with our article on security verification; find out how to use PAM to help secure your systems; use MinorFS and AppArmor to implement discretionary access control; learn more about Samba security in part III of our series; use Darknet to help detect bots and secure your systems; use the Yubikey to increase your site's security; and don't forget to lock the doors, because a cold boot attack could render your security useless if somebody has physical access to your computer.

But, we're not just about sowing the seeds of fear. We also show you how to use memcached in Rails, how to manage multiple servers efficiently, how to deploy applications easily with Capistrano, how to manage your videos with MythVideo, how to mix it up a bit (your audio that is), and even play a few games.

Read this issue