[prev in list] [next in list] [prev in thread] [next in thread]
List: openswan-users
Subject: Re: [Openswan Users] A one-interface gateway
From: "Patrick Ford" <fenderdood () gmail ! com>
Date: 2007-01-31 0:31:06
Message-ID: 480580330701301631n72f69ab8n38ab96996013eebd () mail ! gmail ! com
[Download RAW message or body]
Antony,
Simply omit the sibnet entry for the side of the connection referring to
your openswan box. i.e. left=local right=remote....
left=%defaultroute
right=1.2.3.4
rightsubnet=10.1.2.0/24
authby=secret
Best regards,
Patrick Ford
On 30/01/07, Antony Gelberg <antony@wayforth.co.uk> wrote:
>
> Hi,
>
> I have an offsite server which is currently firewalled on all ports
> apart from a few (smtp, ssh). I would like to be able to set up
> openswan to access X via xdcmp, or possibly VNC (have to investigate
> pros and cons of each).
>
> But I have only ever used openswan to route between subnets, and here
> there is no subnet to access (is there?).
>
> Is openswan the wrong tool for the job? If so, what is the right tool?
> I like the idea of openswan, because then all services are available to
> me as if the machine is under my desk. With stunnel etc I can see
> things getting messy, especially as I might like to offer other
> services, and have multiple users connect.
>
> Antony
> _______________________________________________
> Users@openswan.org
> http://lists.openswan.org/mailman/listinfo/users
> Building and Integrating Virtual Private Networks with Openswan:
> http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
>
--
"Education is what remains after one has forgotten what one has learned in
school."
Albert Einstein
[Attachment #3 (text/html)]
Antony,<br>Simply omit the sibnet entry for the side of the connection referring to \
your openswan box. i.e. left=local \
right=remote....<br><br>left=%defaultroute<br>right=<a \
href="http://1.2.3.4">1.2.3.4</a><br>rightsubnet= <a \
href="http://10.1.2.0/24">10.1.2.0/24</a><br>authby=secret<br><br>Best \
regards,<br><br>Patrick Ford<br><br><div><span class="gmail_quote">On 30/01/07, <b \
class="gmail_sendername">Antony Gelberg</b> <<a \
href="mailto:antony@wayforth.co.uk"> antony@wayforth.co.uk</a>> \
wrote:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, \
204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">Hi,<br><br>I have an \
offsite server which is currently firewalled on all ports <br>apart from a few (smtp, \
ssh). I would like to be able to set up<br>openswan to access X via xdcmp, \
or possibly VNC (have to investigate<br>pros and cons of each).<br><br>But I have \
only ever used openswan to route between subnets, and here <br>there is no subnet to \
access (is there?).<br><br>Is openswan the wrong tool for the job? If so, \
what is the right tool?<br> I like the idea of openswan, because then all services \
are available to<br>me as if the machine is under my desk. With stunnel \
etc I can see <br>things getting messy, especially as I might like to offer \
other<br>services, and have multiple users \
connect.<br><br>Antony<br>_______________________________________________<br><a \
href="mailto:Users@openswan.org">Users@openswan.org </a><br><a \
href="http://lists.openswan.org/mailman/listinfo/users">http://lists.openswan.org/mailman/listinfo/users</a><br>Building \
and Integrating Virtual Private Networks with Openswan:<br><a \
href="http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155"> \
http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155</a><br></blockquote></div><br><br \
clear="all"><br>-- <br><br>"Education is what remains after one has forgotten \
what one has learned in school." <br> Albert Einstein
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic