7.1 VPN Masquerading

Posted on 2002-06-21
Last Modified: 2013-12-16
I just finished a successful setup of my linux router using RH 7.1 with IP Masquerading working. Everything works fine except for my VPN connections (Using two different Kinds PPTP and IPSEC).

All the research I can find on the net talks about having to patch the kernel but most of it has to do with kernel releases 2.0 and 2.2

(Uname is reporting...  2.4.9-34, I am assuming this is my kernel level)

Can someone shed some light on this? Will I need to do kernel surgery to make this work? Perhaps someone could point me in the right direction for information about this procedure for my kernel release.

Oh, Yeah I forgot to note that I am using a script from the net that uses ipchains to implement ip Masq. Don't know much about how that work but know it works...

Question by:jkb2

Accepted Solution

Zook earned 50 total points
ID: 7098993
No idea about RH, but the name of the ipsec package is FreeS/WAN (

Many Distributions have FreeS/WAN included, as an american distribution RH might not due to US encryption export regulations!? Check your package manager to find out.

Anyway, on the site you find the documentation. It includes detailed steps on what to do if your distribution doesn't support FreeS/WAN, that is how to compile a new kernel and install the software.

If RH does support FreeS/WAN you can skip right to configuration.

Hope this helps.

Assisted Solution

mikeyman earned 50 total points
ID: 7109470
FreeS/WAN requires you to place the source files in the /usr/src area and recompile the kernel. Once done, however it works very nicely.  I know for certain FreeS/WAN did not ship with RH 7.1, and as of RH 7.3 that hasn't changed. FreeS/WAN is pretty well documented, so if you know how to recompile the kernel this should go well for you.

Expert Comment

ID: 9076999
This old question needs to be finalized -- accept an answer, split points, or get a refund.  For information on your options, please click here-> http:/help/closing.jsp#1 
Post your closing recommendations!  No comment means you don't care.

Expert Comment

ID: 9220373
This question has been classified abandoned. I will make a recommendation to the moderators on its resolution in a week or two. I appreciate any comments that would help me to make a recommendation.

Unless it is clear to me that the question has been answered I will recommend delete. It is possible that a Grade less than A will be given if no expert makes a case for an A grade. It is assumed that any participant not responding to this request is no longer interested in its final disposition.

If the user does not know how to close the question, the options are here:
LVL 12

Expert Comment

ID: 10380074
No comment has been added lately, so it's time to clean up this TA.
I will leave the following recommendation for this question in the Cleanup topic area:

Split: Zook {http:#7098993} & mikeyman {http:#7109470}

Please leave any comments here within the next four days.

EE Cleanup Volunteer

Featured Post

Complete VMware vSphere® ESX(i) & Hyper-V Backup

Capture your entire system, including the host, with patented disk imaging integrated with VMware VADP / Microsoft VSS and RCT. RTOs is as low as 15 seconds with Acronis Active Restore™. You can enjoy unlimited P2V/V2V migrations from any source (even from a different hypervisor)

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you have a server on collocation with the super-fast CPU, that doesn't mean that you get it running at full power. Here is a preamble. When doing inventory of Linux servers, that I'm administering, I've found that some of them are running on l…
SSH (Secure Shell) - Tips and Tricks As you all know SSH(Secure Shell) is a network protocol, which we use to access/transfer files securely between two networked devices. SSH was actually designed as a replacement for insecure protocols that sen…
Learn how to get help with Linux/Unix bash shell commands. Use help to read help documents for built in bash shell commands.: Use man to interface with the online reference manuals for shell commands.: Use man to search man pages for unknown command…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

23 Experts available now in Live!

Get 1:1 Help Now