yanqui
29th June 2005, 04:47 PM
Dear all,
I want to setup a permanent link between my office in Canada the one in USA. All computer from my two private subnet will use this tunnel to share files, using remote desktop, etc... When a connection is establish between a computer in Canada and another one in USA, this connection must be encrypted.
I tried to setup it using openswan but it doens't work well.
Here is what I want to do:
In Canada, I have a fedora with two network interface. This computer act as my router/firewall for this office. My internal netwotk subnet is 10.45.0.0/16. I have the same configuration in USA but the internal network subnet id 10.46.0.0/16.
I want to connect those two networks together using a secure link. IPSec seems to be the ideal solution. I want to be able to ping all computers from Canada using local ips from USA (i.e. ping 10.46.1.1) and vise-versa.
At this time, with openswan, I'm able to get a connection, but I'm not able to ping any computer from the firewall itself (the one who openswan is installed). However, if I ping a computer on the remote subnet from any other computer except my firewall on my local subnet, I will get the reply.
So right now it works maybe 50%, but I still need help to get this running for all workstation into both subnets.
If somebody can helps me on the matter, I will appreaciate it.
Best regards,
Yanick
I want to setup a permanent link between my office in Canada the one in USA. All computer from my two private subnet will use this tunnel to share files, using remote desktop, etc... When a connection is establish between a computer in Canada and another one in USA, this connection must be encrypted.
I tried to setup it using openswan but it doens't work well.
Here is what I want to do:
In Canada, I have a fedora with two network interface. This computer act as my router/firewall for this office. My internal netwotk subnet is 10.45.0.0/16. I have the same configuration in USA but the internal network subnet id 10.46.0.0/16.
I want to connect those two networks together using a secure link. IPSec seems to be the ideal solution. I want to be able to ping all computers from Canada using local ips from USA (i.e. ping 10.46.1.1) and vise-versa.
At this time, with openswan, I'm able to get a connection, but I'm not able to ping any computer from the firewall itself (the one who openswan is installed). However, if I ping a computer on the remote subnet from any other computer except my firewall on my local subnet, I will get the reply.
So right now it works maybe 50%, but I still need help to get this running for all workstation into both subnets.
If somebody can helps me on the matter, I will appreaciate it.
Best regards,
Yanick
