On Mon, 15 Jan 2007, rabbtux rabbtux wrote:
Anyone have suggestions on what I need to do to allow my customer to do this type of VPN. I currently have customers behind my linux/iptables firewall that masquerades them out a single IP. This is the first customer who is having problems. Do I need a special rule to accomodate them??
Not a "special rule", but there are 2 things that have to be correct for this to work.
1. Your NAT device has to be able to handle IPSEC passthrough 2. Your customer's VPN client has to handle IPSEC passthrough.
The customer is using CenterBeam VPN services, and they tell him that, "your isp is blocking VPN pass thru". I'm not blocking anything. help!
Your customer's tech support center is too stupid to tell him what the problem would be. Look here for some information on configuring IPSEC passthrough on Linux iptables:
http://www.linux.org/docs/ldp/howto/VPN-Masquerade-HOWTO.html -- Butch Evans Network Engineering and Security Consulting 573-276-2879 http://www.butchevans.com/ My calendar: http://tinyurl.com/y24ad6 Training Partners: http://tinyurl.com/smfkf Mikrotik Certified Consultant http://www.mikrotik.com/consultants.html -- WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/
