site-to-site vpn
dsr at tao.merseine.nu
dsr at tao.merseine.nu
Fri Mar 18 09:27:19 EST 2005
On Fri, Mar 18, 2005 at 05:48:46AM -0800, Dave Peters wrote:
> Hello all,
>
> I am new to use site-to-site vpn. After setup cipe. I
> wonder what I have to do next. I talked with some
> people and they told me I need gateway in order to
> work. Can anyone explain to me? Thanks.
VPNs provide a virtual interface for packets to cross. Suppose
you have two sites, each connected to the Net:
A: 10.0.1.0/24
default router/gateway: 10.0.1.1
netmask: 255.255.255.0
B: 192.168.1.0/24
gateway: 192.168.1.1
netmask 255.255.255.0
You then build a VPN link from A's router to B's router. You'll
need a route saying that the best way from A to B, and vice
versa, is through this tunnel.
A: gets new route: 192.168.1.0/24 through vpn0
B: gets new route: 10.0.1.0/24 through vpn0
Now the gateways will take incoming packets and route them
through the VPN when appropriate instead of over the Net at
large. Does this make sense to you?
The details, of course, are up to the particular system you
chose
-dsr-
--
Nothing to sig here, move along.
More information about the Discuss
mailing list