route to vpn network by vpn link

Score:

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

To: OpenBSD-misc list <misc@...>

Subject: route to vpn network by vpn link

Date: Wednesday, December 12, 2007 - 6:27 am

Dear all

I have 3 subnetwork in my lan ( 192.168.1.0/24 ( net_a),
192.168.2.0/24(net_b), 172.16.0.0/16(net_c)).
I made vpn tunelin from net_a to net_b also to net_c.

net_b--(vpn-client_b_to_a)--internet
---((vpn_gw_a)net_a)---lan--(vpn_client_a_to_c)---internet--((net_c)vpn_gw_c)

Bellow network skema:

- vpn_client_b_to_a :
ip: 192.168.2.1
ipsec.conf :
a_lan="192.168.1.0./24"
b_lan="192.168.2.0./24"
vpn_gw="my ip pubcli vpn_gw"
ike esp from $b_lan to $a_lan peer $vpn_gw pask mypassword
ike esp from egress to $a_lan peer $vpn_gw pask mypassword
ike esp from egress to $vpn_gw
static routing :
route add 192.168.1.0/24 192.168.2.1
---------------------------------------------------------------

- vpn_gw_a :
ip: 192.168.1.5
ipsec.conf :
a_lan="192.168.1.0./24"
b_lan="192.168.2.0./24"
vpn_gw="my ip pubcli vpn_gw"
ike esp from $a_lan to any srcid  $vpn_gw pask mypassword

static routing :
route add 172.16.0.0/16 192.168.1.3
---------------------------------------------------------------

- vpn_client_a_to_c :
ip: 192.168.1.3
Nokia-ip60 (setup vendor )
static routing :
route add 192.168.2.0/24 192.168.1.5
---------------------------------------------------------------
======================================
I can akses comp in net_a from net_b ( ping running application etc)
I can remote comp in net_b from net_a ( ping , remote , print (
jetdirect ), etc )
I can remote desktop citrix in net_a to net_c
=======================================
Then i want net_b can acces remote citrix in net_c , so i made static routing :
--- 192.168.1.3 ping statistics ---
2 packets transmitted, 2 packets received, 0.0% packet loss
round-trip min/avg/max/std-dev = 3.759/3.906/4.054/0.160 ms

#route add 172.16.0.0/16 192.168.1.3
#error network can be reached

so how i cant made net_c access able from net_b ?

for detail my network please see in
http://sonjaya.web.id/boboko/vpnsitensite.pdf



-- 
sonjaya
http://sicute.blogspot.com

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

route to vpn network by vpn link, sonjaya, (Wed Dec 12, 6:27 am)

Re: route to vpn network by vpn link, Joseph C. Bender, (Wed Dec 12, 10:08 am)


linux-kernel:
Linus Torvalds	Linux 2.6.27
Bart Van Assche	Integration of SCST in the mainstream Linux kernel
Greg KH	[GIT PATCH] driver core patches against 2.6.24
Alan Cox	[PATCH 00/80] TTY updates for 2.6.28
git:
Linus Torvalds	People unaware of the importance of "git gc"?
Linus Torvalds	[PATCH 1/6] diff-lib: use ce_mode_from_stat() rather than messing with modes manua...
Joakim Tjernlund	git-svn set-tree bug
Robert Collins	Re: VCS comparison table
openbsd-misc:
Marcos Laufer	dmesg IBM x3650 OpenBSD 4.3
Richard Stallman	Real men don't attack straw men
GVG GVG	ssh_exchange_identification: Connection closed by remote host
Samuel Moñux	Cyrus IMAP performance problems [Long]
linux-netdev:
Pekka Enberg	Re: [rfc][patch 3/3] use SLAB_ALIGN_SMP
Frithjof Hammer	Re: [LARTC] ifb and ppp
Evgeniy Polyakov	[2/3] POHMELFS: Documentation.
Maxim Levitsky	How I can reset TCP sockets after long suspend/resume cyscle


How to make my PCIE ATA storage device running in Linux	6 hours ago	Linux general
sata/ide timeout errors on asus server-mb	9 hours ago	Linux kernel
Shared swap partition	10 hours ago	Linux general
usb mic not detected	14 hours ago	Applications and Utilities
Problem in Inserting a module	15 hours ago	Linux kernel
Treason Uncloaked	20 hours ago	Linux kernel
high memory	3 days ago	Linux kernel
semaphore access speed	3 days ago	Applications and Utilities
the kernel how to power off the machine	3 days ago	Linux kernel
Easter Eggs in windows XP	3 days ago	Windows

route to vpn network by vpn link

Online users