I've been trying to get the Bay Networks Extranet Client to work with
Linux IP Masquerading. When I connect to the Contivity Switch (without IP
Masquerading), the client says it's connected with IPSec ESP. Since it's
not using IPSec AH, I SHOULD be able to Masquerade the client.
I downloaded the VPN Masquerade HOWTO, and followed it very carefully
(along with searching the newsgroups extensively). I've patched my kernel
(2.2.12 I believe, I'm using RedHat 6.1). I've also setup the ipchains
policies as specified in the HOWTO. When I try to connect, the client sends
out an ICMP message over port 500 but a reply never comes back.
Has anyone gotten the Extranet Client to work behind a Linux IP
Masquerade box? Thanks for any help you may provide.