Date: 19 Oct 2000 02:55:37 -0000 From: vladimir@math.uic.edu To: philip@adhesivemedia.com, vladimir@math.uic.edu Cc: freebsd-questions@FreeBSD.ORG Subject: Re: pipsecd and PPPoE Message-ID: <20001019025537.8186.qmail@math.uic.edu>
next in thread | raw e-mail | index | archive | help
You are right. Unfortunately there is a firewall between the mobile
node and the network it is connecting to, and I could not establish
connection using pipsecd alone. A combination of PPPOE and pipsecd
seems to work. I am looking at vtund right now, and it seems much
easier to use. Actually the easiest setup seems to be is PPPOE + ssh
(thank you gnb@lightning.itga.com.au for a description).
(and thank you Philip -- your page on pipsecd helped me a lot).
Let me ask something else out of curiosity, maybe someone knows the
answer. I have very little knowledge of these things.
Right now I have:
------------ --------------------------
mobile | PPPOE | server on remote network|
192.168.2.1| --------------------------------| 192.168.1.1 |
tun0 | | tun0 |
----------- --------------------------
| |
| |
| ............|....................................
-------------- . --------------- .
192.168.20.10| . |192.168.10.10 | .
tun1 | <- - --IPSEC-- -- -- -- -- -> |tun1 | fxp0 (ethernet) .
(pipsecd) | . |(pipsecd) | A.B.C.110 .
------------- . ---------------- .
.................................................
<server machine>
From a mobile, I can connect to 192.168.10.10 on the other end. But how do
I access the external A.B.C.0 network (which is present on the fxp0 interface
on the same machine)? How should I change/simplify the picture above?
Thanks,
Vladimir
>From philip@adhesivemedia.com Thu Oct 19 02:00:43 2000
>Delivered-To: vladimir@math.uic.edu
>Date: Wed, 18 Oct 2000 18:59:01 -0700 (PDT)
>From: Philip Hallstrom <philip@adhesivemedia.com>
>To: vladimir@math.uic.edu
>cc: freebsd-questions@FreeBSD.ORG
>Subject: Re: pipsecd and PPPoE
>MIME-Version: 1.0
>
>I don't think pipsecd needs the PPPoE connection... take a look at
>http://www.adhesivemedia.com/~philip/pipsecd.html
>
>Although, I'd use vtun (in the ports) instead... it's a lot easier to
>setup and allows for mobile ip (ie, if one end doesn't have a static IP)
>
>On 18 Oct 2000 vladimir@math.uic.edu wrote:
>
>> Dear BSD users,
>>
>> I've been playing with pipsecd and ppp over ethernet trying
>> to setup a secure connection between two machines on the ethernet.
>>
>> I've managed to connect these machines using ppp other ethernet,
>> with one side having IP = 192.168.1.1 on tun0 and the other
>> side having IP = 192.168.2.1 on tun0. I can ping
>> the other side from each machine.
>>
>> How would I use pipsecd now to setup a secure tunnel from one machine
>> to another (the tunnel should use established PPPoE connection)?
>> After a couple of hours of frustrating attempts I would appreciate
>> any help. If anyone has a similar setup working, that would be
>> great.
>>
>> Thank you!
>> Vladimir
>>
>>
>> To Unsubscribe: send mail to majordomo@FreeBSD.org
>> with "unsubscribe freebsd-questions" in the body of the message
>>
>
>
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20001019025537.8186.qmail>