This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to create host>net with 192.168.1.0??

Hello,

I have successfully created an SSH Sentinel dynamic host -> ASL 4.010 X.509 VPN connection. In this setup the local subnet is my internal network.

I would like to create the same VPN connection but have the subnet definition go to Private_Network_192.168.0.0 instead. The idea here is that I can provide the VPN access but then limit the VPN connections to only accessing a few hosts on the internal network and a few services on those hosts (IMAP, SMTP, http, etc).

Since Private_Network_192.168.0.0 is defined in ASL I would think I could use it just like I used the internal network for the local subnet in the VPN connection. My concern is that since there is no actual NIC in the ASL machine running on that Private_Network_192.168.0.0 that there will be no route for it and no IP will be passed, even if I have packet rules allowing it.

Can someone give me some advise? Is it possible to VPN to a local subnet on the ASL side that has no real nic associated with it?

Thanks!

This thread was automatically locked due to age.

0 kd_03 over 22 years ago

my set up is as follows :

internal network : 192.168.1.0/24

pptp pool : 192.168.2.0/24

I then use pptp-client (under Gentoo linux) to connect my laptop to the pptp tunnel. it is allocated an ip from the pptp pool. I then add a route to the internal network via the ppp0 device. this is all done by modifyiin the scripts that come with pptp-client and pppd.
I did it this way because it makes it easier to read the rules and logs to see where traffic is going. I can allow or deny whatever services from the pptp network to the "real" network.

I'm not familiar with the client you are using, but there must be some way to add a route when the connection is made.

Hope this helps a little,

Karl
Cancel
Vote Up 0 Vote Down

Cancel