?
Solved

7.1 VPN Masquerading

Posted on 2002-06-21
6
Medium Priority
?
302 Views
Last Modified: 2013-12-16
I just finished a successful setup of my linux router using RH 7.1 with IP Masquerading working. Everything works fine except for my VPN connections (Using two different Kinds PPTP and IPSEC).

All the research I can find on the net talks about having to patch the kernel but most of it has to do with kernel releases 2.0 and 2.2

(Uname is reporting...  2.4.9-34, I am assuming this is my kernel level)

Can someone shed some light on this? Will I need to do kernel surgery to make this work? Perhaps someone could point me in the right direction for information about this procedure for my kernel release.

Oh, Yeah I forgot to note that I am using a script from the net that uses ipchains to implement ip Masq. Don't know much about how that work but know it works...

Thanks
0
Comment
Question by:jkb2
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
6 Comments
 
LVL 1

Accepted Solution

by:
Zook earned 200 total points
ID: 7098993
No idea about RH, but the name of the ipsec package is FreeS/WAN (www.freeswan.org).

Many Distributions have FreeS/WAN included, as an american distribution RH might not due to US encryption export regulations!? Check your package manager to find out.

Anyway, on the site you find the documentation. It includes detailed steps on what to do if your distribution doesn't support FreeS/WAN, that is how to compile a new kernel and install the software.

If RH does support FreeS/WAN you can skip right to configuration.

Hope this helps.
cu
Zook
0
 
LVL 1

Assisted Solution

by:mikeyman
mikeyman earned 200 total points
ID: 7109470
FreeS/WAN requires you to place the source files in the /usr/src area and recompile the kernel. Once done, however it works very nicely.  I know for certain FreeS/WAN did not ship with RH 7.1, and as of RH 7.3 that hasn't changed. FreeS/WAN is pretty well documented, so if you know how to recompile the kernel this should go well for you.
0
 

Expert Comment

by:CleanupPing
ID: 9076999
jkb2:
This old question needs to be finalized -- accept an answer, split points, or get a refund.  For information on your options, please click here-> http:/help/closing.jsp#1 
EXPERTS:
Post your closing recommendations!  No comment means you don't care.
0
 
LVL 1

Expert Comment

by:drewber
ID: 9220373
This question has been classified abandoned. I will make a recommendation to the moderators on its resolution in a week or two. I appreciate any comments that would help me to make a recommendation.
 

Unless it is clear to me that the question has been answered I will recommend delete. It is possible that a Grade less than A will be given if no expert makes a case for an A grade. It is assumed that any participant not responding to this request is no longer interested in its final disposition.

 
If the user does not know how to close the question, the options are here:
http://www.experts-exchange.com/help/closing.jsp
 
drewber
0
 
LVL 12

Expert Comment

by:paullamhkg
ID: 10380074
No comment has been added lately, so it's time to clean up this TA.
I will leave the following recommendation for this question in the Cleanup topic area:

Split: Zook {http:#7098993} & mikeyman {http:#7109470}

Please leave any comments here within the next four days.
PLEASE DO NOT ACCEPT THIS COMMENT AS AN ANSWER!

paullamhkg
EE Cleanup Volunteer
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Network Interface Card (NIC) bonding, also known as link aggregation, NIC teaming and trunking, is an important concept to understand and implement in any environment where high availability is of concern. Using this feature, a server administrator …
I. Introduction There's an interesting discussion going on now in an Experts Exchange Group — Attachments with no extension (http://www.experts-exchange.com/discussions/210281/Attachments-with-no-extension.html). This reminded me of questions tha…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.
Suggested Courses
Course of the Month9 days, 5 hours left to enroll

764 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question