Trying to implemetn a VPN, and having a minor blockage in my thought process. Running Bering 1.0 as the router in the following layout:
Internet - eth0 firewall eth1 - wireless - eth0 router eth1 - LAN2
| 10.0.1.0/24
LAN1 10.0.0.0/24
Wanting to run a VPN to secure the wireless from eth1 on the firewall to
eth0 on the router.. I have shorewall configured as I do in other working
VPNs (I'm not really needing the firewalling, but I don't think it will
hurt anything), the problem I'm having is getting the tunnel itself up,
and the routing configured.. If I allow eth0 on the router to DHCP, it's
in the subnet I'm tring to tunnel, and Freeswan complains accordingly. If
I set it to 10.0.1.x, it complains "RTNETLINK answers: Network is
unreachable" and then "`ip route add 10.0.0.0/24 dev ipsec0 via 10.0.0.1'
failed". If I set it to 10.0.2.x, it then complains that "we have no
ipsecN interface for either end of this connection".. If someone could
kick me in the right direction it would be appreciated. I think the
problem is in the addressing/routing somewhere, I just can't find the
right combination.. I have tried the sections "Wireless" and "The Internet
as a big subnet" on the following page:
http://www.freeswan.org/freeswan_trees/freeswan-1.99/doc/adv_config.html#adv_config
But, it still isn't getting the VPN initiated on the router.
---
Homer Parker /"\ ASCII Ribbon Campaign
\ / No HTML/RTF in email
http://www.homershut.net x No Word docs in email
telnet://bbs.homershut.net / \ Respect for open standards
"Bill Gates reports on security progress made and the challenges ahead."
-- Microsoft's Homepage, on the day an SQL Server bug crippled large
sections of the Internet.
pgp00000.pgp
Description: PGP signature
