Re: VPN Server not as a gateway.

---

• From: "toxicated101" <matt.wheatley@xxxxxxxxx>
• Date: 15 Jun 2006 02:53:58 -0700

---

Hi Dave

Possibly, the only problem I see is that you would have to put some
static links onto the firewall to tell it to send any traffic
designated to a internal ip subnet (on the remote side) to the vpn
machine. I just wanted to ask , I haven't seen it done and didn't want
to waste my day if its not possible.

Thanks

Matt

Dave {Reply Address In.sig} wrote:

toxicated101 wrote:

Hi

Is there any way to put a linux box with openswan or freeswan on a
network and having it behave as a vpn server without having it as a
gateway. Most vpn servers I have seen act as a gateway, have 2
interfaces and sit between the outside line and the internal network.
What I want is a vpn server I can just attach to the lan switch with
one ethernet jack. Basically I want it to be more of a mail server
install than a gateway/ firewall install. I already have a hardware
firewall between the wan and the lan, but the vpn on it is rubbish and
refusses to work correctly with any other vpn clients. So If I can
place a box onto the lan which will then replace the vpn server on the
firewall, without it being a point of failure for the entire network,
that would be ideal. If the vpn server dies , you loose vpn , rather
than if the vpn gateway fails you loose the network.

Isn't that just a case of port-forwarding the VPN port through the
firewall box to the machine inside? That's what I've got set up here, a
pptp server on a machine that is patched through the firewall machine.

--
Dave
mail da ve@xxxxxxxxxxx (without the space)
http://www.llondel.org
So many gadgets, so little time

.

---

• References:
  • VPN Server not as a gateway.
    • From: toxicated101
  • Re: VPN Server not as a gateway.
    • From: Dave {Reply Address In.sig}

• Prev by Date: Re: VPN Server not as a gateway.
• Next by Date: Re: Ok, IGMP _proxy_ on Linux?
• Previous by thread: Re: VPN Server not as a gateway.
• Next by thread: Re: VPN Server not as a gateway.
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: RRAS configuration ... My personal opinion is that if all your network is reachable from the ... It is the simplest routing setup because the firewall is already the ... > VPN server and connecting to it then the network behind it. ... (microsoft.public.windows.server.networking) Re: VPN server with a firewall ... Posting on MS newsgroup will benefit all readers and you may get more help. ... How to Setup Windows, Network, Remote Access on http://www.HowToNetworking.com ... just can't integrate the thing with my firewall. ... firewall people say I should make it a single card VPN server and put it ... (microsoft.public.win2000.ras_routing) Re: Strange VPN problem (was: Two servers, one VPN) ... If the VPN server is not behind a NAT, ... levels to keep out the riffraff, but every machine on this network is known ... tell RRAS that one of them is the Internet and the other is the LAN. ... (microsoft.public.win2000.ras_routing) Re: Strange VPN problem (was: Two servers, one VPN) ... If the VPN server is not behind a NAT, ... levels to keep out the riffraff, but every machine on this network is known ... tell RRAS that one of them is the Internet and the other is the LAN. ... (microsoft.public.windowsxp.work_remotely) Re: Mysterious VPN Errors ... If your Firewall is performing NAT for the system and all your servers & ... your Windows Machine that is behind it. ... hence the Firewall must be the "VPN Server" for them. ... > I tested the VPN connection internally from SPUTNIK1 and had no problem> connecting, authenticating, and having the computer registered on the> network. ... (microsoft.public.isa.vpn)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• Mailing-Lists
• Newsgroups
• About
• Privacy
• Search
• Imprint

linux.derkeiler.com  > Newsgroups  > comp.os.linux.networking  > 2006-06