* Alaa Oumansour (alaa.oumansour_at_telia.com) wrote:
> Hi everybody,
>
> I am trying to secure my wlan network at home using IPSec. I have a
> gateway/access point where Freeswan is installed(1.96 on kernel 2.4.18). On
> the other side, I have a laptop runing win98 and PGPnet 6.5.8. I consider my
> laptop as a road warrior and I want to grant it the access to the all
> internet.
> My configuartion is as follows:
>
> config setup
> ipsec0=eth2"
> klipsdebug=none
> plutodebug=none
> plutoload=%search
> plutostart=%search
> uniqueids=yes
>
> conn w
> auto=add
> type=tunnel
> left=192.168.2.2 ------->My laptop
> right=192.168.2.1 ------>My gateway/AP
> keyexchange=ike
> keylife=8h
> keyingtries=3
> pfs=yes
> rekeymargin=9
> rekeyfuzz=25%
If I follow you correctly, you want to encrypt all traffic not delivered on the
local network (i.e. - destined for the internet) which is being routed through
your ipsec gateway. If that is correct, then you should have an entry in your
ipsec.conf like
rightsubnet=0.0.0.0/0
and configure your client to use the ipsec gateway as its default route. I am
not experienced with PGPNet, but would assume that then it would allow you to
do what you want to do. This works with W2K builtin ipsec client with
preshared keys, I know.
---------------------------------------------------------------------------
Chad Carr ccarr_at_franzdoodle.com
---------------------------------------------------------------------------
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.3 : Mon Jul 29 2002 - 05:19:47 CEST