Boston Linux & Unix (BLU) Home | Calendar | Mail Lists | List Archives | Desktop SIG | Hardware Hacking SIG
Wiki | Flickr | PicasaWeb | Video | Maps & Directions | Installfests | Keysignings
Linux Cafe | Meeting Notes | Linux Links | Bling | About BLU

BLU Discuss list archive


[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

site-to-site vpn



On Fri, Mar 18, 2005 at 05:48:46AM -0800, Dave Peters wrote:
> Hello all,
> 
> I am new to use site-to-site vpn. After setup cipe. I
> wonder what I have to do next. I talked with some
> people and they told me I need gateway in order to
> work. Can anyone explain to me? Thanks.

VPNs provide a virtual interface for packets to cross. Suppose
you have two sites, each connected to the Net:

A: 10.0.1.0/24
default router/gateway: 10.0.1.1
netmask: 255.255.255.0

B: 192.168.1.0/24
gateway: 192.168.1.1
netmask 255.255.255.0

You then build a VPN link from A's router to B's router. You'll
need a route saying that the best way from A to B, and vice
versa, is through this tunnel.

A: gets new route: 192.168.1.0/24 through vpn0
B: gets new route: 10.0.1.0/24 through vpn0

Now the gateways will take incoming packets and route them
through the VPN when appropriate instead of over the Net at
large. Does this make sense to you?

The details, of course, are up to the particular system you
chose

-dsr-

-- 
Nothing to sig here, move along.




BLU is a member of BostonUserGroups
BLU is a member of BostonUserGroups
We also thank MIT for the use of their facilities.

Valid HTML 4.01! Valid CSS!



Boston Linux & Unix / webmaster@blu.org