Re: FreeS/WAN from behind NAT

From: luke (
Date: 04/02/03

From: (luke)
Date: 2 Apr 2003 05:02:21 -0800

Dan Smith <> wrote in message news:<>...
> Can someone answer a question for me?
> I want to use FreeS/WAN to connect two linux machines across the 'Net.
> The machines are behind NATing firewalls. I can control every aspect
> of the firewalls, but I can't reboot or disconnect them easily. The
> ultimate goal is to have both of the target machines become the
> NAT/Firewall/Router for their respective networks, but for testing
> purposes, I would like to experiment with two machines behind the
> currently working setup (with private IPs).
> Real question: Can I VPN from one to the other by forwarding the
> correct ports?
> Thanks!
> --Dan


Could not give you the details, but I belive that ipsec will drop up
any packets that have been altered by a router. There may well be a
way round this. Google around, but find out first before investing
lots of time.