7.1 VPN Masquerading

Posted on 2002-06-21
Last Modified: 2013-12-16
I just finished a successful setup of my linux router using RH 7.1 with IP Masquerading working. Everything works fine except for my VPN connections (Using two different Kinds PPTP and IPSEC).

All the research I can find on the net talks about having to patch the kernel but most of it has to do with kernel releases 2.0 and 2.2

(Uname is reporting...  2.4.9-34, I am assuming this is my kernel level)

Can someone shed some light on this? Will I need to do kernel surgery to make this work? Perhaps someone could point me in the right direction for information about this procedure for my kernel release.

Oh, Yeah I forgot to note that I am using a script from the net that uses ipchains to implement ip Masq. Don't know much about how that work but know it works...

Question by:jkb2
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions

Accepted Solution

Zook earned 50 total points
ID: 7098993
No idea about RH, but the name of the ipsec package is FreeS/WAN (

Many Distributions have FreeS/WAN included, as an american distribution RH might not due to US encryption export regulations!? Check your package manager to find out.

Anyway, on the site you find the documentation. It includes detailed steps on what to do if your distribution doesn't support FreeS/WAN, that is how to compile a new kernel and install the software.

If RH does support FreeS/WAN you can skip right to configuration.

Hope this helps.

Assisted Solution

mikeyman earned 50 total points
ID: 7109470
FreeS/WAN requires you to place the source files in the /usr/src area and recompile the kernel. Once done, however it works very nicely.  I know for certain FreeS/WAN did not ship with RH 7.1, and as of RH 7.3 that hasn't changed. FreeS/WAN is pretty well documented, so if you know how to recompile the kernel this should go well for you.

Expert Comment

ID: 9076999
This old question needs to be finalized -- accept an answer, split points, or get a refund.  For information on your options, please click here-> http:/help/closing.jsp#1 
Post your closing recommendations!  No comment means you don't care.

Expert Comment

ID: 9220373
This question has been classified abandoned. I will make a recommendation to the moderators on its resolution in a week or two. I appreciate any comments that would help me to make a recommendation.

Unless it is clear to me that the question has been answered I will recommend delete. It is possible that a Grade less than A will be given if no expert makes a case for an A grade. It is assumed that any participant not responding to this request is no longer interested in its final disposition.

If the user does not know how to close the question, the options are here:
LVL 12

Expert Comment

ID: 10380074
No comment has been added lately, so it's time to clean up this TA.
I will leave the following recommendation for this question in the Cleanup topic area:

Split: Zook {http:#7098993} & mikeyman {http:#7109470}

Please leave any comments here within the next four days.

EE Cleanup Volunteer

Featured Post

Secure Your WordPress Site: 5 Essential Approaches

WordPress is the web's most popular CMS, but its dominance also makes it a target for attackers. Our eBook will show you how to:

Prevent costly exploits of core and plugin vulnerabilities
Repel automated attacks
Lock down your dashboard, secure your code, and protect your users

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Over the last ten+ years I have seen Linux configuration tools come and go. In the early days there was the tried-and-true, all-powerful linuxconf that many thought would remain the one and only Linux configuration tool until the end of times. Well,…
Join Greg Farro and Ethan Banks from Packet Pushers ( and Greg Ross from Paessler ( for a discussion about smart network …
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…

690 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question