LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices

Reply
 
Search this Thread
Old 02-08-2013, 03:13 AM   #1
cgallucci
LQ Newbie
 
Registered: Feb 2013
Posts: 2

Rep: Reputation: Disabled
strongswan configuration hint


Hi all.
I'm in trouble trying to configura a server vpn+ipsec+ike.
whe need to set a vpn from an external server(A) vpn and my server(B).
I'm a bit new about this.

Server A conf send mi this part of configuration:
VPN peer XX.XX.XX.XXX
Private network (source IP Network) 10.21.129.1/32
12.21.129.129/32

On my site i really don't not whitch value to choose for private network.

Someone could please give me a hint.
I'm setting on my linux box a strongSwan ipsec server.

THanks in advance

carmelo
 
Old 02-08-2013, 11:02 PM   #2
Skaperen
Senior Member
 
Registered: May 2009
Location: WV, USA
Distribution: Slackware, CentOS, Ubuntu, Fedora, Timesys, Linux From Scratch
Posts: 1,777
Blog Entries: 20

Rep: Reputation: 115Reputation: 115
Could you give a detailed description of the whole network topology? If you want to keep your IP addresses secret, just make up something. Use true private IPs where private IPs are. Make up real IPs where real IPs are (using examples from RFC 5737 or just pick them out of the ham radio zone in 44.X.X.X).
 
1 members found this post helpful.
Old 02-08-2013, 11:17 PM   #3
Skaperen
Senior Member
 
Registered: May 2009
Location: WV, USA
Distribution: Slackware, CentOS, Ubuntu, Fedora, Timesys, Linux From Scratch
Posts: 1,777
Blog Entries: 20

Rep: Reputation: 115Reputation: 115
For your private networks that are not internet accessed, the address ranges generally used are:

1. 10.0.0.0 - 10.255.255.255 usually broken down in /16 or /24 subnets
2. 172.16.0.0 - 172.31.255.255 usually broken down in /16 or /24 subnets
3. 192.168.0.0 - 192.168.255.255 usually broken down in /24 subnets
4. (for IPv6) fc00:: - fdff:ffff:ffff:ffff:ffff:ffff:ffff:ffff usually broken down in /16 or /64 subnets

See RFC 1918 and RFC 4193.
 
1 members found this post helpful.
Old 02-09-2013, 03:06 AM   #4
cgallucci
LQ Newbie
 
Registered: Feb 2013
Posts: 2

Original Poster
Rep: Reputation: Disabled
thank's

Thank's or hint. I solved my problem reading some documentation. Great to all.

carmelo
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
IKEv2 - Strongswan to Cisco ikev2 Linux - Networking 1 05-18-2013 12:52 PM
StrongSWAN L2TP IPSec VPN with PSK and DynDNS configuration chridazi Linux - Server 3 10-17-2012 05:41 AM
StrongSwan policy question arfett Linux - Networking 5 06-07-2012 12:59 PM
strongswan ipsec culin Linux - Networking 4 08-16-2011 11:31 PM
No-name server, weird problem, pls hint-hint Thor_2.0 Linux - Server 0 04-06-2009 12:21 PM


All times are GMT -5. The time now is 04:06 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration