Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 1 subscriber
  • Views 2116 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

VPN bridge ?

myself
I have a large subnet (class C, ok not that large) at two locations and I want to bridge the net via VPN but I cannot see how to do this using the web ui? Is this possible with the astaro V4?

site 1 -> astaro -> internet 


This thread was automatically locked due to age.
  • 0
    Of course it is; especially if both IPs are static.

    Are you using DSLs with fixed IPs? Then it's the IPsec VPN.
    Not? Then it's the RoadWarrior...
      
  • 0 in reply to SecApp
    Currently both are static, at a later time one of the two will switch from static to dynamic. I am currently building a test-vpn here, I will report if it works (or not). 
  • 0 in reply to SecApp
    Ok, I have set up this type of configuration:

    192.168.1.0/24  192.168.1.98 - Astaro A - 64.64.64.100  64.64.64.1 - MyInternet - 65.65.65.1  65.65.65.100 - Astaro B - 192.168.1.99  192.168.1.0/24

    I can ping from Astaro A to external interface of Astaro B and vice versa. I have created keys and exchanged them but starting the VPN fails: 
    000 "ip99-98_1": 192.168.1.0/24===65.65.65.100[C=de, ST=a, L=a, O=a, OU=a, CN=a, E=abc@example.com]...64.64.64.100[C=de, ST=a, L=a, O=a, OU=a, CN=a, E=abc@example.com]===192.168.1.0/24
    000 "ip99-98_1":   ike_life: 7800s; ipsec_life: 3600s; rekey_margin: 540s; rekey_fuzz: 100%; keyingtries: 0
    000 "ip99-98_1":   policy: RSASIG+ENCRYPT+TUNNEL; interface: eth1; unrouted
    000 "ip99-98_1":   newest ISAKMP SA: #0; newest IPsec SA: #0; eroute owner: #0

    Any hints for me?   
Cookie Information Banner