Linux Netfilter discussions
 help / color / mirror / Atom feed
* Re: VPN question
@ 2003-10-14 15:25 patrick kuah
  2003-10-14 17:45 ` Chris Brenton
  0 siblings, 1 reply; 6+ messages in thread
From: patrick kuah @ 2003-10-14 15:25 UTC (permalink / raw)
  To: cbrenton; +Cc: netfilter

Thanks Chris :)

I'm using ipsec. Currently, my iptables is configured using stateful packet 
inspection.
Do i have to add the rules for port TCP/UDP 50 and TCP 50 ???
Thank you :)

patrick


>From: Chris Brenton <cbrenton@chrisbrenton.org>
>To: patrick kuah <patrickkuah@msn.com>
>CC: netfilter@lists.netfilter.org
>Subject: Re: VPN question
>Date: 14 Oct 2003 06:44:27 -0400
>
>On Tue, 2003-10-14 at 06:19, patrick kuah wrote:
> > Hi all,
> >
> > I have configured a SNAT rule in my iptables but after configuring, i 
>can't
> > VPN to my server which reside on another network.
>
>Do you see this traffic being dropped by your logs?
>
> > Do i need to add rule for VPN traffic to flow through the SNAT? If yes, 
>what
> > are the rule?
>
>VPN is a generic term. What kind of VPN are you talking about? IPSec?
>PPTP? SSL?
>
>If you mean IPSec, you need to open UDP/500 to UDP/500 as well as
>protocol 50. You also want to make sure that IPSec/IKE is only
>negotiating ESP as a security service, not AH.
>
>HTH,
>C
>
>
>
>

_________________________________________________________________
Take a break! Find destinations on MSN Travel. http://www.msn.com.sg/travel/



^ permalink raw reply	[flat|nested] 6+ messages in thread
* VPN question
@ 2004-10-06 19:35 Sunny Shum
  2004-10-06 19:58 ` Jason Opperisano
  0 siblings, 1 reply; 6+ messages in thread
From: Sunny Shum @ 2004-10-06 19:35 UTC (permalink / raw)
  To: netfilter

Hello,
 
I am a newbie to the VPN setup.  Currently, my company has a Windows 2003
server behind a firewall (running iptables on RedHat 9).  I need to setup
VPN for a few executives so they can access the servers from home or on the
road.  I did some research and came to 3 options:
 
1. Run the VPN from the Windows 2003 server
2. OpenVPN
3. OpenSWAN or StrongSWAN
 
My questions are:
 
1. Is this the right place to ask questions regarding VPN, since this is
mainly an iptables-related list?  If not, can someone direct me to a
forum/list which will be helpful?  I really enjoy the information provide
from this list members.
 
2. If I choose option #2 or #3 above, how to set it up? I read the HOWTO
documents, but I am not sure where I should install the server side of the
VPN.  Do I install it on the firewall box?  Or the Windows 2003 box?
 
Thanks!
 
Regards,
Sunny
 
 
 

^ permalink raw reply	[flat|nested] 6+ messages in thread
* VPN question
@ 2003-10-14 10:19 patrick kuah
  2003-10-14 10:44 ` Chris Brenton
  0 siblings, 1 reply; 6+ messages in thread
From: patrick kuah @ 2003-10-14 10:19 UTC (permalink / raw)
  To: netfilter

Hi all,

I have configured a SNAT rule in my iptables but after configuring, i can't 
VPN to my server which reside on another network.

Do i need to add rule for VPN traffic to flow through the SNAT? If yes, what 
are the rule?
Thank for all the help.

patrick

_________________________________________________________________
Download games, logos, wallpapers and lots more at MSN Mobile! 
http://www.msn.com.sg/mobile/



^ permalink raw reply	[flat|nested] 6+ messages in thread
end of thread, other threads:[~2004-10-06 19:58 UTC | newest]

Thread overview: 6+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2003-10-14 15:25 VPN question patrick kuah
2003-10-14 17:45 ` Chris Brenton
  -- strict thread matches above, loose matches on Subject: below --
2004-10-06 19:35 Sunny Shum
2004-10-06 19:58 ` Jason Opperisano
2003-10-14 10:19 patrick kuah
2003-10-14 10:44 ` Chris Brenton

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox