LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
Reload this Page strongswan configuration hint
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 02-08-2013, 03:13 AM   #1
cgallucci
LQ Newbie
 
Registered: Feb 2013
Posts: 2

Rep: Reputation: Disabled
strongswan configuration hint

Hi all.
I'm in trouble trying to configura a server vpn+ipsec+ike.
whe need to set a vpn from an external server(A) vpn and my server(B).
I'm a bit new about this.

Server A conf send mi this part of configuration:
VPN peer XX.XX.XX.XXX
Private network (source IP Network) 10.21.129.1/32
12.21.129.129/32

On my site i really don't not whitch value to choose for private network.

Someone could please give me a hint.
I'm setting on my linux box a strongSwan ipsec server.

THanks in advance

carmelo
 
Old 02-08-2013, 11:02 PM   #2
Skaperen
Senior Member
 
Registered: May 2009
Location: center of singularity
Distribution: Xubuntu, Ubuntu, Slackware, Amazon Linux, OpenBSD, LFS (on Sparc_32 and i386)
Posts: 2,684
Blog Entries: 31

Rep: Reputation: 176Reputation: 176
Could you give a detailed description of the whole network topology? If you want to keep your IP addresses secret, just make up something. Use true private IPs where private IPs are. Make up real IPs where real IPs are (using examples from RFC 5737 or just pick them out of the ham radio zone in 44.X.X.X).
 
1 members found this post helpful.
Old 02-08-2013, 11:17 PM   #3
Skaperen
Senior Member
 
Registered: May 2009
Location: center of singularity
Distribution: Xubuntu, Ubuntu, Slackware, Amazon Linux, OpenBSD, LFS (on Sparc_32 and i386)
Posts: 2,684
Blog Entries: 31

Rep: Reputation: 176Reputation: 176
For your private networks that are not internet accessed, the address ranges generally used are:

1. 10.0.0.0 - 10.255.255.255 usually broken down in /16 or /24 subnets
2. 172.16.0.0 - 172.31.255.255 usually broken down in /16 or /24 subnets
3. 192.168.0.0 - 192.168.255.255 usually broken down in /24 subnets
4. (for IPv6) fc00:: - fdff:ffff:ffff:ffff:ffff:ffff:ffff:ffff usually broken down in /16 or /64 subnets

See RFC 1918 and RFC 4193.
 
1 members found this post helpful.
Old 02-09-2013, 03:06 AM   #4
cgallucci
LQ Newbie
 
Registered: Feb 2013
Posts: 2

Original Poster
Rep: Reputation: Disabled
thank's
Thank's or hint. I solved my problem reading some documentation. Great to all.

carmelo
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
IKEv2 - Strongswan to Cisco ikev2 Linux - Networking 1 05-18-2013 12:52 PM
StrongSWAN L2TP IPSec VPN with PSK and DynDNS configuration chridazi Linux - Server 3 10-17-2012 05:41 AM
StrongSwan policy question arfett Linux - Networking 5 06-07-2012 12:59 PM
strongswan ipsec culin Linux - Networking 4 08-16-2011 11:31 PM
No-name server, weird problem, pls hint-hint ButterflyMelissa Linux - Server 0 04-06-2009 12:21 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 11:39 PM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration