Quick HOWTO : Ch35 : Configuring Linux VPNs/zh
 |
文章出处: |
{{#if: | {{{2}}} | http://www.linuxhomenetworking.com/wiki/index.php/Quick_HOWTO_:_Ch35_:_Configuring_Linux_VPNs }} |
|
翻译人员: |
sanebaby |
|
点击翻译: |
English {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/af | • {{#if: php5|Afrikaans| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/af|Afrikaans]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/ar | • {{#if: php5|العربية| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/ar|العربية]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/az | • {{#if: php5|azərbaycanca| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/az|azərbaycanca]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/bcc | • {{#if: php5|جهلسری بلوچی| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/bcc|جهلسری بلوچی]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/bg | • {{#if: php5|български| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/bg|български]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/br | • {{#if: php5|brezhoneg| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/br|brezhoneg]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/ca | • {{#if: php5|català| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/ca|català]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/cs | • {{#if: php5|čeština| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/cs|čeština]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/de | • {{#if: php5|Deutsch| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/de|Deutsch]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/el | • {{#if: php5|Ελληνικά| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/el|Ελληνικά]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/es | • {{#if: php5|español| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/es|español]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/fa | • {{#if: php5|فارسی| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/fa|فارسی]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/fi | • {{#if: php5|suomi| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/fi|suomi]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/fr | • {{#if: php5|français| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/fr|français]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/gu | • {{#if: php5|ગુજરાતી| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/gu|ગુજરાતી]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/he | • {{#if: php5|עברית| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/he|עברית]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/hu | • {{#if: php5|magyar| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/hu|magyar]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/id | • {{#if: php5|Bahasa Indonesia| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/id|Bahasa Indonesia]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/it | • {{#if: php5|italiano| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/it|italiano]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/ja | • {{#if: php5|日本語| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/ja|日本語]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/ko | • {{#if: php5|한국어| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/ko|한국어]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/ksh | • {{#if: php5|Ripoarisch| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/ksh|Ripoarisch]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/mr | • {{#if: php5|मराठी| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/mr|मराठी]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/ms | • {{#if: php5|Bahasa Melayu| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/ms|Bahasa Melayu]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/nl | • {{#if: php5|Nederlands| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/nl|Nederlands]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/no | • {{#if: php5|norsk| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/no|norsk]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/oc | • {{#if: php5|occitan| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/oc|occitan]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/pl | • {{#if: php5|polski| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/pl|polski]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/pt | • {{#if: php5|português| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/pt|português]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/ro | • {{#if: php5|română| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/ro|română]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/ru | • {{#if: php5|русский| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/ru|русский]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/si | • {{#if: php5|සිංහල| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/si|සිංහල]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/sq | • {{#if: php5|shqip| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/sq|shqip]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/sr | • {{#if: php5|српски / srpski| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/sr|српски / srpski]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/sv | • {{#if: php5|svenska| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/sv|svenska]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/th | • {{#if: php5|ไทย| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/th|ไทย]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/tr | • {{#if: php5|Türkçe| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/tr|Türkçe]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/vi | • {{#if: php5|Tiếng Việt| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/vi|Tiếng Việt]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/yue | • {{#if: php5|粵語| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/yue|粵語]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/zh | • {{#if: php5|中文| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/zh|中文]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/zh-hans | • {{#if: php5|中文(简体)| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/zh-hans|中文(简体)]]}}|}} {{#ifexist: {{#if: php5 | php5 | {{#if: | :}}Quick HOWTO : Ch35 : Configuring Linux VPNs/zh}}/zh-hant | • {{#if: php5|中文(繁體)| [[::Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/zh-hant|中文(繁體)]]}}|}} |
{{#ifeq:php5|:Quick HOWTO : Ch35 : Configuring Linux VPNs/zh|请不要直接编辑翻译本页,本页将定期与来源同步。}} |
{{#ifexist: :Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/zh | | {{#ifexist: Quick HOWTO : Ch35 : Configuring Linux VPNs/zh/zh | | {{#ifeq: {{#titleparts:Quick HOWTO : Ch35 : Configuring Linux VPNs/zh|1|-1|}} | zh | | }} }} }} {{#ifeq: {{#titleparts:Quick HOWTO : Ch35 : Configuring Linux VPNs/zh|1|-1|}} | zh | | }}
介绍
随着 SOHO 的增长,你最终需要建立一些安全的连接到供应商、卖主、分支机构、商业伙伴和是顾主,以便能够联入他们的位于Internet 防火墙后面的服务器。
一种解决办法就是建立虚拟专用网络(VPN)在你的防火墙和他们之间提供加密的数据流。VPN十分方便,因为你能不依靠公网IP地址,而仅靠私有IP位址连接到远程服务器。这样就避免了连接服务器的网络地址转换的问题。
本章将概述如何使用 Openswan (Linux下流行的VPN软件) 构造一个固定的点对点的VPN连接。
如果你对VPNs不熟悉,请看附录I,"Miscellaneous Linux Topics", 提供了一些对深入理解本章要点重要的背景知识。
VPN 指引
Here are some recommended guidelines that I suggest you consider before attempting a simple SOHO Linux VPN.
- The IPSec protocol on which VPNs are based will not tolerate its data packets being network address translated. If your firewall does NAT, then you'll have to disable it specifically for the packets that will traverse the VPN.
- Life will be much easier if you make your Linux VPN box also function as a firewall. Configure and test the firewall first and then configure the VPN. Chapter 14, "Linux Firewalls Using iptables", should help a lot.
- The networks at both ends of the VPN tunnel must use different IP address ranges. Many company networks operate using 192.168.0.x or 192.168.1.x addresses, you may have to reassign IP addresses to your network if overlaps occur.
- Permanent site-to-site VPNs require firewalls at both ends that use static, DHCP IP addresses.
