Re: Ipsec behind linux FireWall

To: Jean-François JOLY <jfjoly@free.fr>
Cc: debian-security@lists.debian.org, debian-firewall@lists.debian.org
Subject: Re: Ipsec behind linux FireWall
From: Rene Mayrhofer <rene.mayrhofer@vianova.at>
Date: Wed, 29 Nov 2000 10:36:18 +0100
Message-id: <[🔎] 3A24CE12.F57993B3@vianova.at>
References: <[🔎] 975405099.3a23802bee9f4@imp.free.fr>

Jean-François JOLY wrote:
> 
> Hello all,
> I'm currently working on VPNs, I just wonder if it's possible to set up an Ipsec
> server behind a Linux FireWall. The question is: is the Linux Kernel able to
> forward IP protocols (AH+IKE if I remember well ...) he don't understand ?
Yes, this is possible. E.g. with for 'ipchains' command, the '-p' (protocol)
option also understands numeric protocol numbers, thus you can specify
forwarding rules for protocols that are not known to the kernel. There is also a
kernel patch that allows masquerading of IPSec at
ftp://ftp.rubyriver.com/pub/jhardin/masquerade/ip_masq_vpn.html

best greets,
Rene

Reply to:

References:
- Ipsec behind linux FireWall
  - From: Jean-François JOLY <jfjoly@free.fr>

Prev by Date: Re: Ipsec behind linux FireWall
Next by Date: one-time-passwords for telnet
Previous by thread: Re: Ipsec behind linux FireWall
Next by thread: one-time-passwords for telnet
Index(es):
- Date
- Thread