Eu ja li inumeras documentacoes sobre vpn mas nenhuma eh melhor e mais explicativa do que
http://www.primeirospassos.org/sessao10_8_b.html On Thursday 22 January 2004 08:56, M�rcio Luciano Donada wrote: > Pessoal o que tem de errado nisso abaixo: > > Gateway A > 200.x.x.82 > 192.168.1.1 > > cat rc.conf > router_flags="-q" > router="/sbin/routed" > router_enable="YES" > ipsec_enable="YES" > ipsec_file="/etc/ipsec.conf" > gif_interfaces="gif0" > gifconfig_gif0="200.x.x.82 200.x.x.30" > ifconfig_gif0="192.168.1.1 192.168.0.2 netmask 255.255.255.255" > static_routes="vpn" > route_vpn="-net 192.168.0.0/24 192.168.0.2" > > cat ipsec.conf > flush; > spdflush; > add 200.x.x.82 200.x.x.30 esp 9991 -E blowfish-cbc "DiabO"; > add 200.x.x.30 200.x.x.82 esp 9992 -E blowfish-cbc "DiabO"; > spdadd 192.168.1.0/24 192.168.0.0/24 any -P out ipsec > esp/tunnel/200.x.x.82-200.x.x.30/require; > spdadd 192.168.0.0/24 192.168.1.0/24 any -P in ipsec > esp/tunnel/200.x.x.30-200.x.x.82/require; > > netstat -r > 192.168.0 192.168.0.2 > 192.168.0.2 force > > > Gateway B > 200.x.x.20 > 192.168.0.2 > > cat rc.conf > router_flags="-q" > router="/sbin/routed" > router_enable="YES" > ipsec_enable="YES" > ipsec_file="/etc/ipsec.conf" > gif_interfaces="gif0" > gifconfig_gif0="200.x.x.30 200.x.x.82" > ifconfig_gif0="192.168.0.2 192.168.1.1 netmask 255.255.255.255" > static_routes="vpn" > route_vpn="-net 192.168.1.0/24 192.168.1.1" > > cat ipsec.conf > flush; > spdflush; > add 200.x.x.30 200.x.x.82 esp 9991 -E blowfish-cbc "DiabO"; > add 200.x.x.82 200.x.x.30 esp 9992 -E blowfish-cbc "DiabO"; > spdadd 192.168.0.0/24 192.168.1.0/24 any -P out ipsec > esp/tunnel/200.x.x.30-200.x.x.82/require; > spdadd 192.168.1.0/24 192.168.0.0/24 any -P in ipsec > esp/tunnel/200.x.x.82-200.x.x.30/require; > > netstat -r > 192.168.1 192.168.1.1 > 192.168.1.1 awake (nome do servidor) > > Se algum puder da um help, n�o estou conseguindo ver o erro, n�o consigo > pingar para os servidores, > > []'s > M�rcio > > _______________________________________________________________ > Sair da Lista: http://lists.fugspbr.org/listinfo.cgi > Historico: http://www4.fugspbr.org/lista/html/FUG-BR/ -- Christopher Giese <SkyWarrior> System Network Administrator - IRAPIDA TELECOM OS: FreeBSD, OpenBSD, NetBSD, Linux, Solaris, Qnx, ... [EMAIL PROTECTED] - www.bsdux.com.br "O g�nio se comp�e de dois por cento de talento e noventa e oito por cento de perseverante aplica��o". (Ludwig Van Beethoven) _______________________________________________________________ Sair da Lista: http://lists.fugspbr.org/listinfo.cgi Historico: http://www4.fugspbr.org/lista/html/FUG-BR/
