LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 07-10-2001, 04:02 AM   #1
agaatje
LQ Newbie
 
Registered: Jul 2001
Posts: 3

Rep: Reputation: 0
Q: Novell VPN client -> RedHat 7


Anyone got the Novell BorderManager VPN client 3.6 running in combination with a Linux firewall.

I replaced my old firewall/router for a Clarkconnect (RedHat 7) linux box but can not get my VPN client up and running.

I opened up the ports required for the VPN client
UDP/TCP 353. But no luck.

I also tried:
echo "1" > /proc/sys/net/ipv4/ip_forward

/sbin/ipchains -M -S 7200 10 240

/sbin/ipchains -P forward DENY
/sbin/ipchains -A forward -s 192.168.0.0/24 -j MASQ

Do I need to do more?
Thanks,

A.Gaatje
 
Old 07-10-2001, 08:38 AM   #2
raz
Member
 
Registered: Apr 2001
Location: London
Posts: 408

Rep: Reputation: 31
Hi,

The problem in masquerading VPN traffic is that Linux 7.0's IP masquerade has no awareness of IP protocols other than TCP, UDP and ICMP.!

IPsec over a VPN requires a change that adds support for the ISAKMP key exchange protocol.

You need to update to Redhat 7.1 or use the 7.0 Clarkconnect box as the VPN client without NAT from one of your windows boxes.

/Raz
 
Old 07-10-2001, 08:41 AM   #3
raz
Member
 
Registered: Apr 2001
Location: London
Posts: 408

Rep: Reputation: 31
or try to patch it following this link:

http://www.impsec.org/linux/masquerade/ip_masq_vpn.html

I don't know Novell BorderManager VPN but I assume it used ipsec and not it's own protocol, like Checkpoint's FWZ.

/Raz
 
Old 07-10-2001, 10:49 AM   #4
agaatje
LQ Newbie
 
Registered: Jul 2001
Posts: 3

Original Poster
Rep: Reputation: 0
CC is RedHat kernel v. 2.2.17

Thanks for the info,

On this link

"RedHat has included the VPN patch in kernels 2.2.16-8"

My ClarkConnect has kernel 2.2.17-14 from Redhat.
Looks like the patches are in place.

Arie
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Cisco VPN Client under RedHat 8.0 [HC]Butcher Linux - Networking 5 01-13-2005 04:07 AM
trouble installing Novell client on Redhat 9 bcdss_cbh Linux - Networking 0 06-11-2004 02:43 PM
how to connect redhat linux as client to the novell server? halovivek Linux - Networking 3 08-17-2003 12:12 PM
Cisco VPN client and Redhat 9 riggers Linux - Software 14 08-04-2003 10:56 AM
Novell Client on Yopper. (Server running Novell 5 SP6) C++freak Linux - Networking 0 06-03-2003 02:22 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 04:15 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration