[K12OSN] easy VPN?

Les Mikesell les at futuresource.com
Mon Apr 26 16:17:59 UTC 2004

On Mon, 2004-04-26 at 10:35, Julius Szelagiewicz wrote:
> OK, the CIPE VPN is going. The difficulties got resolved when i tried to
> connect 2 k12 servers on the same network segment. Difficulty number 1 is
> the "suggested" choice of tunnelling device: "None - Server Settings".
> well, it doesn't work for me. after selecting the external ether interface
> i got the connection.

This probably depends on your addressing scheme.  You have to make sure
that the best route to the remote endpoint for the packets encapsulating
the tunnel is not "through" the tunnel.  This is true for just about
any tunnel protocol.

> 	now all i need is to set the firewall rules on the k12 box so that
> the CIPE is going, the terminals boot, the users can get on the net and
> nothing untoward gets in. should i just use the frumpy redhat tool, or is
> there an easier way?

I do the firewalling elsewhere so won't be much help with this.
Depending on your firewall rules, in addition to allowing the
UDP packets on the outside, you may have to permit everything
on the cipcb0 interface the same as it is for the inside ethernet.

  Les Mikesell
   les at futuresource.com

More information about the K12OSN mailing list