Hi all,
To setup a vpn between a linux box and a snapgear box, do the
following:
On the Snapgear box:
1) On the web admin page, go to VPN / IPSec - see attached
ipsec-snapgear-1.jpg
2) Create a new tunnel - see attached ipsec-snapgear-2.jpg
Fill out the remote gateway details.
3) Configure the IKE setup - see attached ispec-snapgear-3.jpg
Basically all you should have to do is fill out the remote public key.
On the Linux box, assuming you have FreeS/WAN installed:
1) Add a similar connection to the following:
conn pdx
left=%any
leftid=@pdx.pisoftware.com
# Local public key from Snapgear box
leftrsasigkey=0sAQOvHQUu06nFdh4RA8Lp2wzbbXLvI6xQKVNw6fcwS9QNQxK0f/2yfk0NEXlcDbr8v97HCYzKMo3d8ER+40JbT/kv
leftsubnet=192.168.40.0/24
right=203.20.51.50
rightid=@stallman.pisoftware.com
# Remote public key from Snapgear box
rightrsasigkey=0sAQNWRB7dgatjoGNa8GK20mgolKrY7q5Lk6mhD3eFcuQMjGsrWvPzytx0L6Aa5sZMjDSi2bJ/QCELhKIp7IwmIyuE6360oedrTlGWwHWn/j7Q8OWHcas0QQMK7eOq96dq+oJfi0xNWvwAa9XDSbZx29roqmE++n7cp0M0P0Cv+U5S/Q==
rightsubnet=192.168.20.0/24
rightnexthop=203.20.51.1
keyexchange=ike
authby=rsasig
auth=esp
pfs=yes
type=tunnel
auto=add
2) Restart ipsec.
Thanks,
Brad
--
+=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-+
|Brad Marshall | Plugged In Software|
|Senior Systems Administrator | http://www.pisoftware.com|
|mailto:bmarshal@pisoftware.com | GPG Key Id: 47951BD0 / 1024b|
+-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=+
Fingerprint: BAE3 4794 E627 2EAF 7EC0 4763 7884 4BE8 4795 1BD0
Attachment:
ipsec-snapgear-1.jpg
Description: JPEG image
Attachment:
ipsec-snapgear-2.jpg
Description: JPEG image
Attachment:
ipsec-snapgear-3.jpg
Description: JPEG image
