Re: [Users] How to design a IPSec topology in a mixed Linux/W2K wireless network?

• Next message: Nate Carlson: "Re: [Users] Local 802.11 network help..."
• Previous message: Sanjiv Bawa: "[Users] http://vpn.ebootis.de does not work - WHere is ipsec.exe"
• In reply to: Rosso Rosso: "[Users] How to design a IPSec topology in a mixed Linux/W2K wireless network?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

On Fri, 29 Mar 2002, Rosso Rosso wrote:
> My initial question is how to secure *all* traffic over the wireless
> 10.1.55.0 network. This includes encrypting all traffic and filtering
> out any rogue clients. Do I need to have the FW require IPSec trafic
> in its 10.0.1.1 interface? or is there a way to get the dynamic
> clients to tunnel via the W2K gateway.
>
> Any insight or help greatly appreciated!

Rosso,

How I've done it is just setting up IPSec on the windows side to use '*'
for the remote destination, and using iptables to filter out all
traffic besides ipsec on the wireless interface of my firewall.
Works very well.

----------------------------------------------------------------------
| nate carlson | natecars_at_natecarlson.com |
| brainbench mvp for linux admin -- http://www.brainbench.com |
----------------------------------------------------------------------

_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users

• Next message: Nate Carlson: "Re: [Users] Local 802.11 network help..."
• Previous message: Sanjiv Bawa: "[Users] http://vpn.ebootis.de does not work - WHere is ipsec.exe"
• In reply to: Rosso Rosso: "[Users] How to design a IPSec topology in a mixed Linux/W2K wireless network?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.3 : Mon Jul 29 2002 - 05:19:47 CEST