[Users] VPN routers

Greetings all, me again…

http://www.russells-world.com/fs for the barfs for the client and the server. I’ve gotten the client to authenticate with the server successfully, and the connection comes up on its own, which is good. The next problem is with the IPTABLES rules. What I’m doing is making a freeswan vpn router- so that if the clients set 10.1.1.1 as their router on the remote networks, then all their traffic will be routed through the ipsec tunnel- and when I say all I mean everything… web browsing to remote network exploring. Once the tunnel comes up on the remote clients they can ping 192.168.0.3, which is the internal IP address of the freeswan concentrator. However they cannot ping any other hosts on the remote network, nor can the freeswan concentrator ping any of the ip addresses of the remote clients let alone 10.1.1.1.

Here is what I have for the iptables rules for the client side vpn router: #!/bin/sh
IPTABLES=/sbin/iptables
EXTIF="ipsec0"
INTIF="eth1"

echo "1" > /proc/sys/net/ipv4/ip_forward
echo "32768" > /proc/sys/net/ipv4/ip_conntrack_max
echo "1" > /proc/sys/net/ipv4/ip_dynaddr

$IPTABLES -P INPUT ACCEPT

To be honest, I don’t know what to configure on the vpn concentrator side.

If anyone would be willing to help me out with this, please shoot me an email.

Thanks in advance,

Russ