This basically works but there are incompatibilities between nat-t in OpenBSD and that from certain vendors, notably cisco.
On 2011-11-13, Mik J <mikyde...@yahoo.fr> wrote: > Hello, > > I would like to know if such configuration is possible. > > LAN1 > (192.168.10.0/24) <--> OpenBSD .99 <--> .254 Router IPx <--> Internet <--> IPy > IPSec_GW (Vendor) <--> LAN2 (192.168.20.0/24) > > As you can see the OpenBSD 4.9 > server sits on the LAN1 and has one physical interface. > When it wants to > access to the internet, its address 192.168.10.99 is natted in IPx and that's > how the IPSec_GW(Vendor) sees the source packets. > > It's not really important > now if other machines on LAN1 should ping machines on LAN2. I would like for > now that the OpenBSD could ping machines on LAN2. > > I have search for examples > on the internet for this particular case because the OpenBSD is behind a nat > router. And I haven't found the proper way to do this. I don't even know if > it's possible. I know some kind of nat-t should be used though. > > Does anyone > have this configuration in place ? > > Thanks
