7.1 VPN Masquerading

Posted on 2002-06-21
Last Modified: 2013-12-16
I just finished a successful setup of my linux router using RH 7.1 with IP Masquerading working. Everything works fine except for my VPN connections (Using two different Kinds PPTP and IPSEC).

All the research I can find on the net talks about having to patch the kernel but most of it has to do with kernel releases 2.0 and 2.2

(Uname is reporting...  2.4.9-34, I am assuming this is my kernel level)

Can someone shed some light on this? Will I need to do kernel surgery to make this work? Perhaps someone could point me in the right direction for information about this procedure for my kernel release.

Oh, Yeah I forgot to note that I am using a script from the net that uses ipchains to implement ip Masq. Don't know much about how that work but know it works...

Question by:jkb2

Accepted Solution

Zook earned 50 total points
Comment Utility
No idea about RH, but the name of the ipsec package is FreeS/WAN (

Many Distributions have FreeS/WAN included, as an american distribution RH might not due to US encryption export regulations!? Check your package manager to find out.

Anyway, on the site you find the documentation. It includes detailed steps on what to do if your distribution doesn't support FreeS/WAN, that is how to compile a new kernel and install the software.

If RH does support FreeS/WAN you can skip right to configuration.

Hope this helps.

Assisted Solution

mikeyman earned 50 total points
Comment Utility
FreeS/WAN requires you to place the source files in the /usr/src area and recompile the kernel. Once done, however it works very nicely.  I know for certain FreeS/WAN did not ship with RH 7.1, and as of RH 7.3 that hasn't changed. FreeS/WAN is pretty well documented, so if you know how to recompile the kernel this should go well for you.

Expert Comment

Comment Utility
This old question needs to be finalized -- accept an answer, split points, or get a refund.  For information on your options, please click here-> http:/help/closing.jsp#1
Post your closing recommendations!  No comment means you don't care.

Expert Comment

Comment Utility
This question has been classified abandoned. I will make a recommendation to the moderators on its resolution in a week or two. I appreciate any comments that would help me to make a recommendation.

Unless it is clear to me that the question has been answered I will recommend delete. It is possible that a Grade less than A will be given if no expert makes a case for an A grade. It is assumed that any participant not responding to this request is no longer interested in its final disposition.

If the user does not know how to close the question, the options are here:
LVL 12

Expert Comment

Comment Utility
No comment has been added lately, so it's time to clean up this TA.
I will leave the following recommendation for this question in the Cleanup topic area:

Split: Zook {http:#7098993} & mikeyman {http:#7109470}

Please leave any comments here within the next four days.

EE Cleanup Volunteer

Featured Post

Complete VMware vSphere® ESX(i) & Hyper-V Backup

Capture your entire system, including the host, with patented disk imaging integrated with VMware VADP / Microsoft VSS and RCT. RTOs is as low as 15 seconds with Acronis Active Restore™. You can enjoy unlimited P2V/V2V migrations from any source (even from a different hypervisor)

Join & Write a Comment

I am a long time windows user and for me it is normal to have spaces in directory and file names. Changing to Linux I found myself frustrated when I moved my windows data over to my new Linux computer. The problem occurs when at the command line.…
How many times have you wanted to quickly do the same thing to a list but found yourself typing it again and again? I first figured out a small time saver with the up arrow to recall the last command but that can only get you so far if you have a bi…
Learn how to get help with Linux/Unix bash shell commands. Use help to read help documents for built in bash shell commands.: Use man to interface with the online reference manuals for shell commands.: Use man to search man pages for unknown command…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now