From: "G. Georgiev" <ggeorgiev@videotron.ca>
To: lartc@vger.kernel.org
Subject: [LARTC] Routing / masqerading advice needed.
Date: Wed, 19 Mar 2003 17:12:27 +0000 [thread overview]
Message-ID: <marc-lartc-104809403309275@msgid-missing> (raw)
Hello,
Have a non-standard routing / masquerading issue to which I still can
not imagine a solution.
The problem: I need to create several encrypted links to a remote
side - VPN.GALILEO.COM from a single linux machine - a gateway for a new
branch office. The problem comes from the fact that for every link the remote
side assigns me a different address. This way I end up having several
local interfaces (ppp0,ppp1...) with different addresses that communicate
to the same addres on the other end.
However, the package (Focalpoint emulator) that I run in several
copies on the SAME computer behind the firewall has to communicate with the
'SERVER' on the other end every copy via one and only one of those channels,
determined by the login name/address assigned when I create the channel, else
packets are discarded. The emulator uses one port to communicate to the
server, all emulators executing connect() to the same remote port, and of
cource getting an ephemerial port after the connection is accept() ed.
emulator 1 \ /-gw/ppp0 --encrypted ----\
emulator 2 -my net--gw/ppp1 -------------------- other end ---- SERVER
emulator x / \- gw/ppp* -------------------/
So, I need to masquerade packets via those interfaces at my gw - no
problem, but how to route them if all they have same destination address, but
packets originating from different copies of the same application should use
different channels?
If there is a possibility to change the packet DESTINATION address AFTER
routng is done this may do the job - I will configure my emulators to contact
the near end of the ppp channel - all they have different addresses, and just
before delivering packet to the ppp link change the address for the 'SERVER'
one.
Another way is somehow to distingish between different copies of the emulator
and to make different routing tables for them - but not clear how.
In general, I have to make my gateway lie the other end that every
copy of the emulator runs on a different computer. How?
Any ideas appreciated, George.
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
next reply other threads:[~2003-03-19 17:12 UTC|newest]
Thread overview: 2+ messages / expand[flat|nested] mbox.gz Atom feed top
2003-03-19 17:12 G. Georgiev [this message]
2003-03-19 17:33 ` [LARTC] Routing / masqerading advice needed Martin A. Brown
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=marc-lartc-104809403309275@msgid-missing \
--to=ggeorgiev@videotron.ca \
--cc=lartc@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.