VPN (IPSEC)

alexus alexus at gmail.com
Mon Jun 2 16:13:22 UTC 2008 

anyone?


On Sat, May 31, 2008 at 7:49 PM, alexus <alexus at gmail.com> wrote:
> Hello,
>
> I'm trying to establish a VPN tunnel over internet, I read a
> http://www.freebsd.org/doc/en/books/handbook/ipsec.html on how to set
> it up, I'm some what strangeling if my setup will work at all.
>
> i have box #1 that have 1 primary IP, which is private IP but in front
> of my box, I have a device that translate a public IP address into
> private IP, so "technicaly" its a public IP not a private, yet system
> sees it as private, yet my box #2 has interface with real public ip
> and another interface with private ip, i created GIF0 interface, yet i
> can't ping private range on other box.
>
>
> box#1
>
> fxp0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
>        options=8<VLAN_MTU>
>        ether 00:0f:fe:aa:f4:61
>        inet 192.168.1.251 netmask 0xffffff00 broadcast 192.168.1.255
>        inet 172.16.172.16 netmask 0xffffffff broadcast 172.16.172.16
>        media: Ethernet autoselect (100baseTX <full-duplex>)
>        status: active
> plip0: flags=108810<POINTOPOINT,SIMPLEX,MULTICAST,NEEDSGIANT> metric 0 mtu 1500
> lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> metric 0 mtu 16384
>        inet6 fe80::1%lo0 prefixlen 64 scopeid 0x3
>        inet6 ::1 prefixlen 128
>        inet 127.0.0.1 netmask 0xff000000
> gif0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> metric 0 mtu 1280
>        tunnel inet 38.96.123.42 --> 74.2.252.194
>        inet 192.168.1.251 --> 192.168.2.252 netmask 0xffffffff
> alexus at jot ~ 503$ netstat -rn | grep gif0
> 192.168.2.252      192.168.1.251      UH          0       15   gif0
> alexus at jot ~ 504$
>
> box#2
>
> su-3.2# ifconfig
> dc0: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> metric
> 0 mtu 1500
>        options=8<VLAN_MTU>
>        ether 00:1a:70:10:e3:89
>        inet 74.2.252.194 netmask 0xfffffff8 broadcast 74.2.252.199
>        media: Ethernet autoselect (100baseTX)
>        status: active
> fxp0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
>        options=8<VLAN_MTU>
>        ether 00:13:20:09:53:31
>        inet 192.168.2.252 netmask 0xffffff00 broadcast 192.168.2.255
>        media: Ethernet autoselect (100baseTX <full-duplex>)
>        status: active
> lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> metric 0 mtu 16384
>        inet 127.0.0.1 netmask 0xff000000
> gif0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> metric 0 mtu 1280
>        tunnel inet 74.2.252.194 --> 38.96.132.42
>        inet 192.168.2.252 --> 192.168.1.251 netmask 0xffffffff
> su-3.2# netstat -rn | grep gif0
> 192.168.1.251      192.168.2.252      UH          0      602   gif0
> su-3.2#
>
>
> any suggestions are welcome, thanks!
> --
> http://alexus.org/
>



-- 
http://alexus.org/

More information about the freebsd-questions mailing list