Cipe through an IPTables Firewall
Chuck Mead
csm@moongroup.com
Sun, 6 Jan 2002 20:18:06 -0500 (EST)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Okay... I've spent all day looking through the ipfilter mailing list
archives and cannot find anyone who has done this so now I'm going to
ask here.
Here's the architecture:
laptop <----------> iptables <----------> remote peer
192.168.0/24 0.0.0.0
cipcb0 <--------------------------------> remote peer
10.0.0.2 10/8 10.0.0.1
So... in words... I have a trusted network (192.168.0/24) behind an
iptables, NATing firewall. On that network is a laptop which has cipe
running on it configured with ip address 10.0.0.2 which is supposed to
talk to a remote peer on address 10.0.0.1 out on the internet through a
cipe tunnel. The reason I want to do it this way is that I want this
laptop to have the same connection to this remote peer no matter where
it goes. But it does not work through the iptables firewall.
So has anyone done this successfully? If so I'd appreciate the chance to
hear about your configuration and your iptables rules.
- --
csm
Dmitry is free!
Boycott Adobe!
Repeal the DMCA!
Stop the SSSCA!
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iEYEARECAAYFAjw4908ACgkQv6Gjsf2pQ0rflACgoXi55cs02esn8V+xpDCadUJL
dv8AnR93jlxUnr+lts0nFfd/3nrAxunE
=53Tc
-----END PGP SIGNATURE-----