Ho incluso VPNC nella build di Freetz (trunk/Rev5338)
e configurato la VPNC "traducendo" il file .pcf in cisco.conf, come spiegato su:
http://www.ubuntugeek.com/how-to-setup-cisco-vpn-using-vpnc-ubuntu-jaunty-9-04.html
Mi connetto correttamente al router CISCO e ottengo un IP sulla rete locale.
Non sono pero' in grado di far condividere al FritzBox la sessione VPN, perche' iptables mi ritorna un errore:
Loading table list...
iptables v1.4.1.1: can't initialize iptables table `nat': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
le rules di iptables sono:
-A INPUT -s 0.0.0.0/0 -d 0.0.0.0/0 -p all -j ACCEPT
-A FORWARD -s 0.0.0.0/0 -d 0.0.0.0/0 -p all -o tun0 -j ACCEPT
-A FORWARD -s 0.0.0.0/0 -d 0.0.0.0/0 -p all -i tun0 -j ACCEPT
-t nat -A POSTROUTING -s 0.0.0.0/0 -d 0.0.0.0/0 -p all -o tun0 -j MASQUERADE
inserite con i comandi:
/var/mod/root # iptables -A FORWARD -o tun0 -j ACCEPT
/var/mod/root # iptables -A FORWARD -i tun0 -j ACCEPT
/var/mod/root # iptables -t nat -A POSTROUTING -o tun0 -j MASQUERADE
/var/mod/root # iptables -S
ma iptables -t nat -A POSTROUTING -o tun0 -j MASQUERADE da l'errore sopra riportato.
Nel make e' gia' incluso iptables_nat ma sembra mancare qualcosa d'altro??!
e configurato la VPNC "traducendo" il file .pcf in cisco.conf, come spiegato su:
http://www.ubuntugeek.com/how-to-setup-cisco-vpn-using-vpnc-ubuntu-jaunty-9-04.html
Mi connetto correttamente al router CISCO e ottengo un IP sulla rete locale.
Non sono pero' in grado di far condividere al FritzBox la sessione VPN, perche' iptables mi ritorna un errore:
Loading table list...
iptables v1.4.1.1: can't initialize iptables table `nat': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
le rules di iptables sono:
-A INPUT -s 0.0.0.0/0 -d 0.0.0.0/0 -p all -j ACCEPT
-A FORWARD -s 0.0.0.0/0 -d 0.0.0.0/0 -p all -o tun0 -j ACCEPT
-A FORWARD -s 0.0.0.0/0 -d 0.0.0.0/0 -p all -i tun0 -j ACCEPT
-t nat -A POSTROUTING -s 0.0.0.0/0 -d 0.0.0.0/0 -p all -o tun0 -j MASQUERADE
inserite con i comandi:
/var/mod/root # iptables -A FORWARD -o tun0 -j ACCEPT
/var/mod/root # iptables -A FORWARD -i tun0 -j ACCEPT
/var/mod/root # iptables -t nat -A POSTROUTING -o tun0 -j MASQUERADE
/var/mod/root # iptables -S
ma iptables -t nat -A POSTROUTING -o tun0 -j MASQUERADE da l'errore sopra riportato.
Nel make e' gia' incluso iptables_nat ma sembra mancare qualcosa d'altro??!