ipsec tunnel with same subnet in A and B

From: julien mabillard (freebsd_at_libkvm.org)
Date: 09/25/03

  • Next message: Nate Grey: "Realtek 8139 + Acer Laptop"
    Date: Thu, 25 Sep 2003 10:36:10 +0200
    To: freebsd-net@freebsd.org
    
    

    hi,
    i have some questions regarding an ipsec tunnel
    which i want to setup between to hosts (A, B),

    but I want A and B to be in the same subnet.
    what are the possiblilities?

    also, i might meet the following situation:
    a)
    A 10.0.0.10 <==> ipsec_gw <==> routers <==> ipsec_gw <===> B 10.0.0.1

    b)
    A 10.0.0.10 <==> ipsec_gw <==> Layer-2(switches) <==> ipsec_gw <===> B 10.0.0.1

    can anyone give me a clue on the 2 stiuations?

    in (a), i just want an ip sec tunnel, but the endpoint hosts
    being in the same subnet.

    in (b), same situation but i don't have routing between the
    ipsec boxes, only switching.
    can i tweak some bridging and netgraph setup for that?

    thank you very much.

    -- 
    Key fingerprint = C549 46E1 1B75 116E 3321  BC0A E502 9457 319E B340
    _______________________________________________
    freebsd-net@freebsd.org mailing list
    http://lists.freebsd.org/mailman/listinfo/freebsd-net
    To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"
    

  • Next message: Nate Grey: "Realtek 8139 + Acer Laptop"

    Relevant Pages

    • Re: [normal] RE: [Full-Disclosure] Windows Dcom Worm planned DDoS
      ... > Normal Site ... > By using this setup, you can filter everything except http requests. ... > difrent forwards to the main site. ... > out over several forwarding hosts and not even touch the main site. ...
      (Full-Disclosure)
    • [opensuse] Problem creating ipsec tunnel between two 10.2 boxes
      ... I'm trying to setup a simple ipsec tunnel between two 10.2 boxes and I'm ... A.B.C.113's route looks like: ... Metric Ref Use Iface ...
      (SuSE)
    • Need help with ipsec policy
      ... We are trying to setup an IPSec tunnel from one office to another as a VPN ... tunnel using a Win2003 server on one side and a Cisco Router on the other.. ...
      (microsoft.public.windows.server.networking)
    • Re: DMZ and AD
      ... I was just trying to clear up a terminology thing about what an IPSec tunnel ... > case, the FE server) to the internal network hosts (this case, the DNS, ... > Exchange clusters is now recommended) with the intent of requiring fewer ... > security devices between the DMZ host and the internal infrastructure to ...
      (microsoft.public.windows.server.active_directory)
    • Re: DNS || sendmail? (or both?)
      ... Try adding all the hosts you accept mail for to your local-host-names ... starting 'Fw-o' in /etc/mail/sendmail.cf. ... MX records should also be setup for each domain you want to accept ...
      (freebsd-questions)