Koozali.org: home of the SME Server

Legacy Forums => General Discussion (Legacy) => Topic started by: ulfilas on August 23, 2004, 10:46:44 AM

Title: esmith5.6 <-> esmith6.0 VPN Connection?
Post by: ulfilas on August 23, 2004, 10:46:44 AM

hi,

i included vpn support for two users on my esmith6.0b system. it works pretty well. now i want to connect my whole network via vpn to a other office, which using esmith5.6. is it possible or impossible?

thx and regards
ulf

Title: esmith5.6 <-> esmith6.0 VPN Connection?
Post by: ger on August 23, 2004, 01:46:36 PM

It is possible.

http://no.longer.valid/phpwiki/index.php/IPSEC%20VPN

Title: esmith5.6 <-> esmith6.0 VPN Connection?
Post by: ryan on August 23, 2004, 09:48:56 PM

ger,

You might take a look at IPCop to connect your offices...it is easy to use and very stable.  I found that SME IPSEC vpn broke after each upgrade, so I now use IPCop as my network router device and SME for services.

ryan

Title: esmith5.6 <-> esmith6.0 VPN Connection?
Post by: ger on August 24, 2004, 09:22:36 AM

Ryan,

I had the same problem, but when you change the line parms2, everything works:

[root@smenst ipsec]# pwd
/usr/local/lib/ipsec
[root@smenst ipsec]# cat _updown|grep parms2
#       parms2="dev $PLUTO_INTERFACE gw $PLUTO_NEXT_HOP"
        parms2="dev $PLUTO_INTERFACE"
                it="route $1 -net 0.0.0.0 netmask 128.0.0.0 $parms2 &&
                        route $1 -net 128.0.0.0 netmask 128.0.0.0 $parms2"
        *)      it="route $1 $parms $parms2"
[root@smenst ipsec]#

Ger