IPsec routing issue
Hi I'm supposed to setup an IPsec tunnel with another company's server.
They have provided me with the details and I have to make it work.
Our LAN IP behind our router is in the 10.1.1.0/24 subnet.
They are telling me, however, that I have to make all traffic going to their network appear to be coming from a LAN IP 172.16.100.10. They then want me, whilst pretending to be this host, connect to another subnet on their end eg 192.168.1.0/24.
I'm finding this unreasonable as they are dictating which network, traffic should appear to be coming from (I have no idea why, I'm starting to think they don't know what they are talking about)
How am I meant to masquerade traffic as coming from 172.17.128.156 and route all traffic for 192.168.1.0 through that link?
I'm running Centos 5.0 and I have shorewall installed as my firewall/router setup.
Lets say my default gw is eth0
I then create a virtual interface called eth0:1 with the ip address of 172.16.100.10
I can't add the route 192.168.1.0/24 to dev eth0:1 specifically can I? It will just appear as eth0......
If anyone has any ideas or experience with this could you please help?
Thanks,
|