[oclug] FreeS/WAN question
Jon Earle
earlej at kronos.honk.org
Wed Apr 7 14:12:27 EDT 2004
On Tue, 6 Apr 2004, Charly Baker wrote:
> > Right... but that's my problem. Unless I can assign an address from the
> > private network to the remote client (clients will be mostly Windows 2000
> > boxen and one Linux client [me]), I'd be chasing all of the client IP
> > addresses each time they connect.
> >
> > Can I do that - assign an address from the private network over the VPN?
> >
> Not dynamically, but the tunnel that you set up to the client has to have an
> address at each end. At the client end, assign it to be whatever you want,
> and it will be that no matter where the client is. What do you have in your
> config files for the tunnel to the client?
The left side is set to the IP config of the gateway, the right side is
set to accept any client IP. Which is fine as this will allow me to set a
single configuration that will serve all clients, without requiring me
knowing from where they're connecting.
The tunnel just gets an IP from the current network config, so I'm not
sure what you're getting at when you suggest "At the client end, assign it
to be whatever you want". Thinking of a home PC that's just plugged into
a DSL modem, it get's it IP from the ISP's DHCP server, which is most
decidedly not on my private subnet nor within my control.
Cheers!
Jon
--
Jon Earle
Software Developer / Network Manager
Specializing in Open Source Software Solutions
http://kronos.honk.org/~earlej/
More information about the OCLUG
mailing list