> Hi everyone, > > I want to connect two remote LANs using CIPE VPN. I have two Linux > machines (with Red hat 9) one on each LAN, which are installed with > CIPE-1.4.5-16. The set-up is as illusrated below > > LAN A=192.168.3.0/24-------|LINUX A(with CIPE)| > <------------VPN------------>|Linux B(with CIPE)|--------LAN > B=192.168.4.0/24 > |eth0=public A > |eth0=public B > |eth1=192.168.3.1 > |eth1=192.168.4.1 > |cipcb0=10.0.0.1 > |cipcb0=10.0.0.2 > > Both LANs are using static IP addresses which are SNATed to public IP for > accessing outside world > > I am new to CIPE, and i was trying to install using the document shipped > with RedHat 9 (RedHat 9 doc, Security Guide). > During installation, i come across many difficulties as outlined below: > > -In the directory /etc/cipe there are some files which need to be edited, > i copied file 'options' to 'options.cipcb0' and then editing the > 'options.cipcb0' file as follows > ptaddr=cipcb0 of remote Linux router. i.e for LINUX A, ptpaddr=10.0.0.2 > and for LINUX B, ptpaddr=10.0.0.1 > ipaddr=its cipcb0.i.e, LINUX A has 10.0.0.1 and LINUX B has 10.0.0.2 > me=eth0 > peer= 'eth0 of remote Linux router':port whereby i used port 6060 which > is the default port given in the file 'redhat-ifcfg-cipcb0' > - What i don't understand in this file are these ports, as in the sample > files i have seen ports 6789, 6543, 6060, and 6969(in the documentation > i'm reffering). So, which port should i define in 'peer', and which in > 'me'? > -Also i'm not sure with the addresses i'm using for peer & me, are they > correct?(since in the CIPE examples i have seen they use dynamic ip > addresses for internal LAN, so me becomes 0.0.0.0. While in my case the > intarnal Ip addresses are static) > > -Another problem is regarding the interface cipcb0. after creating this > interface it stood on top of eth0 when i do 'ifconfig' command. is this > normal, as i created it by just copying the contents of > redhat-ifcfg-cipcb0 to ifcfg-cipcb0 (in the > /etc/sysconfig/network-scripts).. So, my ifcfg-cipcb0 has these entries: > device=cipcb0; onboot=yes; userctl=yes; myport=6060 peer=public of > remote:6060; ptpaddr & ipaddr. > When i do ifconfig i get the following as some of the entries for > cipcb0: > Link encap: IPIP Tunnel HWaddr > inet addr: 10.0.0.1 P-t-P: 10.0.0.2 mask: 255.255.255.255 > UP POINTOPOINT NOTRALERS RUNNING NOARP MTU: 1442 Metric: 1 > According to these info, did i created the cipcb0 interface clearly? > > Well, so many questions but it is not easy to explain them on a sheet of > paper. Even, i'm not sure if i have managed to explain clearly the > problems i'm facing. If you have understood these questions, then thank > you, however even if they are not clearly explained, please understand > that what i need to know is how to install and keep CIPE up and running > for the setup that i have (LANs are using static IPs and not dynamic) > > Thank you > Steven > >
<<attachment: winmail.dat>>
