Red Hat Networking - NewBie Q: Force Routing

This is Interesting: Free IT Magazines  
Home > Archive > Red Hat Networking > January 2004 > NewBie Q: Force Routing





You are viewing an archived Text-only version of the thread. To view this thread in it's original format and/or if you want to reply to this thread please [click here]

Author NewBie Q: Force Routing
Soul

2004-01-23, 7:37 pm

**** Post for FREE via your newsreader at post.usenet.com ****

Hi,

We have successfully setup our simple VPN simulation in the university lab
using IPSEC method. Our setup is as
http://teeyk.customer.netspace.net.au/labsetup.jpg. We assume our University
network as the Internet. Both the eth1 interface of serverLeft and
serverRight is connect to the university network (as Internet) using DHCP
and will be assign with IP of 130.194.71.*

We only perform the following for the VPN to work:
1.. Configure ipsec.conf for Network-Network VPN
2.. Configure /etc/sysctl.conf to enable ip_foward and disable rp_filter
We also perform the following command on serverLeft in order for clientLeft
to access the Internet:
a.. iptables -t nat -A POSTROUTING -s 10.0.0.0/8 -d ! 10.0.0.0/8 -j
SNAT --to 130.194.71.235

I understand that we can create an iptables rule similar to above on
serverRight for clientRight to access the Internet, but in that case
clientRight will access the Internet through serverRight.

Can anyone teach me how to force clientRight to route through serverLeft by
the VPN tunnel when accessing the Internet.

Thank you.

--
Soul




-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
*** Usenet.com - The #1 Usenet Newsgroup Service on The Planet! ***
http://www.usenet.com
Unlimited Download - 19 Seperate Servers - 90,000 groups - Uncensored
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
Sponsored Links






Free braindumps | Software forum | Database administration forum

Copyright 2003 - 2008 webservertalk.com