Diff for "HowTo/openswan"

Differences between revisions 5 and 6

Topology:

host 1 ------------------- vpn-gw 1 <----------------------------> vpn-gw 2 ------------------ host 2
                                               |                                       |
                                |                                     |
<--192.168.50.0/24-->    10.15.109.36                  10.15.109.5      <--192.168.1.0/24-->

Setup:

Install the openswan package. Now we got 2 main files: /etc/ipsec.secrets and /etc/ipsec.conf

Edit ipsec.secrets for vpn-gw 1:

 10.15.109.36 10.15.109.5 : PSK "password

Edit ipsec.secrets for vpn-gw 1:

 10.15.109.5 10.15.109.36 : PSK "password"

Edit ipsec.conf for vpn-gw 1 & vpn-gw 2 (same exact stuff):

 conn vpn
 authby=secret
 left=10.15.109.36
 leftsubnet=192.168.50.0/24
 leftnexthop=10.15.109.5
 right=10.15.109.5
 rightsubnet=192.168.1.0/24
 rightnexthop=10.15.109.36

Restart ipsec:
```
 /etc/init.d/ipsec restart
```
Now you can ping from host 1 to host 2!

-  ⇤ ← Revision 5 as of 2006-08-16 01:29:57 → 
  Size: 1055
  Editor: JustinSearle
  Comment:
+   ← Revision 6 as of 2006-08-16 01:31:08 → ⇥
  Size: 1011
  Editor: JustinSearle
  Comment:
-Deletions are marked like this.
+Additions are marked like this.
 Line 12:
-. Install the openswan package. Now we got 2 main files: /etc/ipsec.secrets and /etc/ipsec.conf
2. Edit ipsec.secrets for vpn-gw 1:
{{{
10.15.109.36 10.15.109.5 : PSK "password
}}}
3. Edit ipsec.secrets for vpn-gw 1:
{{{
      10.15.109.5 10.15.109.36 : PSK "password"
}}}
   4. Edit ipsec.conf for vpn-gw 1 & vpn-gw 2 (same exact stuff):
{{{
      conn vpn
      authby=secret
      left=10.15.109.36
      leftsubnet=192.168.50.0/24
      leftnexthop=10.15.109.5
      right=10.15.109.5
      rightsubnet=192.168.1.0/24
      rightnexthop=10.15.109.36
}}}
   5. Restart ipsec:
{{{
      /etc/init.d/ipsec restart
}}}
   6. Now you can ping from host 1 to host 2!
+. Install the openswan package. Now we got 2 main files: /etc/ipsec.secrets and /etc/ipsec.conf
 2. Edit ipsec.secrets for vpn-gw 1:
 {{{
 10.15.109.36 10.15.109.5 : PSK "password
 }}}
 3. Edit ipsec.secrets for vpn-gw 1:
 {{{
 10.15.109.5 10.15.109.36 : PSK "password"
 }}}
 4. Edit ipsec.conf for vpn-gw 1 & vpn-gw 2 (same exact stuff):
 {{{
 conn vpn
 authby=secret
 left=10.15.109.36
 leftsubnet=192.168.50.0/24
 leftnexthop=10.15.109.5
 right=10.15.109.5
 rightsubnet=192.168.1.0/24
 rightnexthop=10.15.109.36
 }}}
 5. Restart ipsec:
 {{{
 /etc/init.d/ipsec restart
 }}}
 6. Now you can ping from host 1 to host 2!