LinuxQuestions.org
Did you know LQ has a Linux Hardware Compatibility List?
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices

Reply
 
LinkBack Search this Thread
Old 07-23-2002, 05:18 PM   #1
furrie
LQ Newbie
 
Registered: Dec 2001
Location: Yate, Bristol, England, UK
Distribution: CentOS, Ubuntu, FreeBSD
Posts: 23

Rep: Reputation: 15
Angry IPCop to IPCop VPN...


Hello Everybody,

I need some help (please)...

I am trying to get 2 IPCops to VPN but am experiencing difficulties :-(

On the VPN page of both, I see this: -

Name Status
furrie (10.7.0.0/24) CLOSED

On my box, I have input the IP of the ppp interface (213.208.115.165) into the Global settings...

I have left the other boxes Global Settings empty so it will take the Red (eth1) IP.

Left-hand VPN parameters: furrie (My IPCop)
Red Network IP address (left): 213.208.115.165
Firewall Gateway Address (left next hop): 195.149.20.11
VPN connected network/netmask (left subnet): 10.7.0.0/24

Right-hand VPN parameters: stelararrow (The Other IPCop)
Red Network IP address (right): 80.192.7.54
Firewall Gateway Address (right next hop): 80.192.7.1
VPN connected network/netmask (right subnet): 10.7.2.0/24


SECRET: ********************************
(I have made sure that this is identickle *giggles* by cutting and pasting it)



*** My IPCop Box ***

root@valhalla~$netstat -nr
Kernel IP routing table
Destination Gateway Genmask Flags MSS Window irtt Iface
195.149.20.11 0.0.0.0 255.255.255.255 UH 0 0 0 ppp0
195.149.20.11 0.0.0.0 255.255.255.255 UH 0 0 0 ipsec0
10.7.0.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
0.0.0.0 195.149.20.11 0.0.0.0 UG 0 0 0 ppp0

VPN Service is "RUNNING"

eth0 Link encap:Ethernet HWaddr 00:80:5A:13:CB:61
inet addr:10.7.0.1 Bcast:10.7.0.255 Mask:255.255.255.0
(LAN) UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:56898 errors:0 dropped:0 overruns:0 frame:0
TX packets:50465 errors:0 dropped:0 overruns:0 carrier:0
collisions:1015 txqueuelen:100
RX bytes:6975562 (6.6 Mb) TX bytes:27248108 (25.9 Mb)
Interrupt:10 Base address:0xecc0

ppp0 Link encap:Point-to-Point Protocol
inet addr:213.208.115.165 P-t-P:195.149.20.11 Mask:255.255.255.255
(USB- UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1500 Metric:1
ADSL) RX packets:10366 errors:0 dropped:0 overruns:0 frame:0
TX packets:10376 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:10
RX bytes:1508944 (1.4 Mb) TX bytes:393555 (384.3 Kb)

ipsec0 Link encap:Point-to-Point Protocol
inet addr:213.208.115.165 Mask:255.255.255.255
(VPN) UP RUNNING NOARP MTU:16260 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:10
RX bytes:0 (0.0 b) TX bytes:0 (0.0 b)


*** The Other IPCop Box ***

root@ipcop~$netstat -nr
Kernel IP routing table
Destination Gateway Genmask Flags MSS Window irtt Iface
80.192.7.0 0.0.0.0 255.255.255.0 U 0 0 0 eth1
80.192.7.0 0.0.0.0 255.255.255.0 U 0 0 0 ipsec0
10.7.2.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
0.0.0.0 80.192.7.1 0.0.0.0 UG 0 0 0 eth1

VPN Service is "RUNNING"

eth0 Link encap:Ethernet HWaddr 00:80:5A:12:91:5C
inet addr:10.7.2.1 Bcast:10.7.2.255 Mask:255.255.255.0
(LAN) UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:59465 errors:0 dropped:0 overruns:0 frame:0
TX packets:47733 errors:0 dropped:0 overruns:0 carrier:0
collisions:2042 txqueuelen:100
RX bytes:5736762 (5.4 Mb) TX bytes:21134308 (20.1 Mb)
Interrupt:5 Base address:0xecc0

eth1 Link encap:Ethernet HWaddr 00:10:A7:08:54:C2
inet addr:80.192.7.54 Bcast:255.255.255.255 Mask:255.255.255.0
(Cable) UP BROADCAST NOTRAILERS RUNNING MTU:1500 Metric:1
RX packets:235179 errors:0 dropped:0 overruns:0 frame:0
TX packets:60637 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:100
RX bytes:31381901 (29.9 Mb) TX bytes:7479253 (7.1 Mb)
Interrupt:10 Base address:0xe800

ipsec0 Link encap:Ethernet HWaddr 00:10:A7:08:54:C2
inet addr:80.192.7.54 Mask:255.255.255.0
(VPN) UP RUNNING NOARP MTU:16260 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:10
RX bytes:0 (0.0 b) TX bytes:0 (0.0 b)

***

Well, if I've missed anything, please let me know ;-)

Hopefully, some eagle-eyed dude will make me feel a bit silly and point out my mistakes!!!

I am a Technical Support Engineer for www.intY.net (with plenty to learn, obviously), should anyone be interested...

Thanks in advance for everyones patience while reading this.

Cheers!


Chris Phillips
(furrie)
 
Old 11-04-2003, 12:40 PM   #2
santigua
LQ Newbie
 
Registered: Oct 2003
Location: germany
Distribution: Mandrake
Posts: 8

Rep: Reputation: 0
IPCop to IPCop VPN...

Hi!

I'm no expert neither, but I have it "running" too.... not with /all/ the success I'm wishing fot, but well.....I can reach the other distant subnet using ping. (Computer)NameResolution doesnt work yet...

But I thought abut one thing while reading your Post:

You wrote:

...
On my box, I have input the IP of the ppp interface (213.208.115.165) into the Global settings...

I have left the other boxes Global Settings empty so it will take the Red (eth1) IP.

Left-hand VPN parameters: furrie (My IPCop)
Red Network IP address (left): 213.208.115.165
Firewall Gateway Address (left next hop): 195.149.20.11
VPN connected network/netmask (left subnet): 10.7.0.0/24

Right-hand VPN parameters: stelararrow (The Other IPCop)
Red Network IP address (right): 80.192.7.54
Firewall Gateway Address (right next hop): 80.192.7.1
VPN connected network/netmask (right subnet): 10.7.2.0/24
...


I dont know wheather you have a real fixed Global-IP, but unless you have, you'll get throuble with you dynamic ip. I worked around while using dyn.dhs.org along with the appriopiate settings in IPCop in the DynDNS section.

Also make shure you have IPCop#1 and IPCop#2 fed with the SAME parameters on each.

wish u some success with your VPN,
the rest I use for mine...

thanx for reading.
Santigua
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are Off
Pingbacks are On
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Need IPCop to IpCop VPN assistance Freddde Linux - Networking 1 09-15-2005 02:28 PM
IPCop Users - need VPN settings file slackhack Linux - General 2 08-18-2005 06:31 PM
IPCop VPN PortForwarding Trouble delta-2 Linux - Security 0 04-06-2005 05:42 AM
IPCOP VPN Troubles Big Brad Linux - Newbie 2 10-18-2003 11:02 PM
IPCop j0hn0n1 Linux - Security 8 09-23-2003 06:15 AM


All times are GMT -5. The time now is 10:19 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration