From anushya at gsecone.com Wed Mar 7 00:06:45 2007 From: anushya at gsecone.com (Anushya) Date: Wed, 7 Mar 2007 10:36:45 +0530 Subject: [VPN] Linux as a L2TP client Message-ID: Hi, My windows xp is acting as a L2TP server whereas i want to configure a linux as a L2TP client. How to configure? Any tutorials or links please. ____________________________________________________________________________ ________________________ When you can't fly Try to Run When you cant't run Try to Walk When you can't walk Try to Crawl But whatever you do Keep moving" -- Martin Luther ____________________________________________________________________________ _______________ Regards, G. Anushya, Junior Member (QA), anushya at gsecone.com Gsec1 (A Division of ITAC, UK Limited) Chennai, India. Tel : +91 44 4202 2601 to 2605 Ext.333 Fax: +91 44 4202 2606 www.gsec1.com ____________________________________________________________________________ ________________________ This email is confidential and is intended for the original recipient(s) only. If you have erroneously received his mail, please delete it immediately and notify the sender. Unauthorized copying, disclosure or distribution of the material in this mail is prohibited. Views expressed in this mail are those of the individual sender and do not bind GSec1 (A Division of ITAC UK Limited) or its subsidiary, unless the sender has done so expressly with due authority of GSec1 (A Division of ITAC UK Limited) ____________________________________________________________________________ ________________________ -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.shmoo.com/pipermail/vpn/attachments/20070307/4928c0c1/attachment.htm From togmajay at yahoo.co.in Wed Mar 7 03:45:16 2007 From: togmajay at yahoo.co.in (G.Anushya) Date: Wed, 7 Mar 2007 08:45:16 +0000 (GMT) Subject: [VPN] (L2TP) username format for network connection. Message-ID: <20070307084516.90322.qmail@web7602.mail.in.yahoo.com> Hi, After configuring the network connection for vpn in windows xp, the username accepts any format (includes special symbols, numeric and char). But, the connection is not established for some username formats even the configuration details are correct. Anybody plz help me to find whether the username format is not accepted by windows or not accepted by vpn or any? Wht else the formats can be used? ********************* Thanks and Regards, Anushya. G ********************* --------------------------------- Here?s a new way to find what you're looking for - Yahoo! Answers -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.shmoo.com/pipermail/vpn/attachments/20070307/273d5353/attachment.htm From list.vpn.shmoo at centerpoint.be Tue Mar 13 07:11:31 2007 From: list.vpn.shmoo at centerpoint.be (VPN user) Date: Tue, 13 Mar 2007 11:11:31 +0000 Subject: [VPN] Cisco VPN before NAT Message-ID: <20070313111131.q4rt5alios0wsokg@mail.centerpoint.be> Hi, I have the following problem, and can't seem to find a solution. I have 2 Cisco routers, A and B with a VPN connection. Both routers have a serial interface pointing to external and an ethernet interface (Lets call them A and B) pointing to the inside. Traffic between subnet A and B is NOT NATed and the VPN works fine. Now, router B has a second ethernet interface (C), to subnet C. I added this subnet to the IPSEC ACLS on both routers as I want to allow subnet A to access subnet C through the VPN. The tunnel is up and running with no NAT being done. However, on router B, access from subnet B to C is NATed: Interface B ip nat inside ! Interface C ip nat outside ! ip nat inside source route-map NAT interface C overload ! route-map NAT permit 10 match ip address 123 ! access-list 123 permit ip SUBNET_B SUBNET_C So far so good. Now the problem: How can I NAT traffic from subnet A to subnet C? I tried adding access-list 123 permit ip SUBNET_A SUBNET_C but this doesn't help as traffic coming out of the VPN seems not to be affected by the NAT rule, probably because it is not considered coming from an interface with "ip nat inside". Is there a way of doing this without using tunnel interfaces? Thanks in advance.