Differences between revisions 1 and 2
Revision 1 as of 2006-08-16 01:20:04
Size: 1022
Editor: JustinSearle
Comment:
Revision 2 as of 2006-08-16 01:26:15
Size: 1070
Editor: JustinSearle
Comment:
Deletions are marked like this. Additions are marked like this.
Line 3: Line 3:
{{{
Line 7: Line 8:
}}}
Line 13: Line 14:
{{{
Line 14: Line 16:
}}}
Line 15: Line 18:
{{{
Line 16: Line 20:
}}}
Line 17: Line 22:
{{{
Line 25: Line 31:
}}}
Line 26: Line 33:
{{{
Line 27: Line 35:
}}}

Topology: 

host 1 ------------------- vpn-gw 1 <----------------------------> vpn-gw 2 ------------------ host 2
                                               |                                       |
                                |                                     |
<--192.168.50.0/24-->    10.15.109.36                  10.15.109.5      <--192.168.1.0/24-->

Setup:

  1. Install the openswan package. Now we got 2 main files: /etc/ipsec.secrets and /etc/ipsec.conf
  2. Edit ipsec.secrets for vpn-gw 1: 

      10.15.109.36 10.15.109.5 : PSK "password
  1. Edit ipsec.secrets for vpn-gw 1: 

      10.15.109.5 10.15.109.36 : PSK "password"

  1. Edit ipsec.conf for vpn-gw 1 & vpn-gw 2 (same exact stuff): 

      conn vpn
      authby=secret
      left=10.15.109.36
      leftsubnet=192.168.50.0/24
      leftnexthop=10.15.109.5
      right=10.15.109.5
      rightsubnet=192.168.1.0/24
      rightnexthop=10.15.109.36
  1. Restart ipsec: 

      /etc/init.d/ipsec restart
  1. Now you can ping from host 1 to host 2!