RE: [Users] Question: linux/Sparc connected to Cisco (VPN)

• Next message: Telex_Notes_Blm_1_at_telex.com: "[Users] Report to Recipient(s)"
• Previous message: Marcela Vicecci: "[Users] unsuscribe"
• Maybe in reply to: Werner Hunsicker - Sun Germany Exception Management - Frankfu: "[Users] Question: linux/Sparc connected to Cisco (VPN)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi Joe,

thanks for reply. I found out that our network guys are using the Cisco VPN 5000
concentrator which provide the following features:

Common Specifications
Core VPN Features
Tunneling protocol: IPsec
Key management: IKE
Authentication: IPsec ESP or AH using MD5 digital signature or SHA
Encryption: IPsec ESP using DES or 3DES
Operational configurations: Direct attach to Frame Relay-capable switch (Cisco
5002and 5008 only) or switched and routed 10/100 Ethernet
Compliant with RFCs: 2401-2410

Remote Access Support
Client connection support: PPP over dialup or ISDN; direct connect Ethernet
including DSL and cable modem
Client authentication support: Internally configured; RADIUS; SecurID, Accent
Defender, X.509 digital certificates

For authentication we use a so called Enigma Card which calculates the password
on the fly.
For me it seems that the concentrator and FreeSwan should be able to work
together.
One last question: Can I establish a "RADIUS" like client authentication with
FreeSwan?

Thanks in advance to all.

Werner

> From: "Joe Patterson" <jpatterson_at_asgardgroup.com>
> To: "Werner Hunsicker - Sun Germany Exception Management - Frankfu"
<Werner.Hunsicker_at_sun.com>, <users_at_lists.freeswan.org>
> Cc: <werner.hunsicker_at_arcormail.de>
> Subject: RE: [Users] Question: linux/Sparc connected to Cisco (VPN)
> Date: Wed, 24 Apr 2002 09:21:43 -0400
> X-Priority: 3 (Normal)
> X-MSMail-Priority: Normal
> X-MIMEOLE: Produced By Microsoft MimeOLE V5.50.4522.1200
> Importance: Normal
>
> Ew. Ugly problem. You are correct that, AFAIK, while there is a cisco vpn
> client for solaris/sparc and linux/x86, there isn't one for linux/sparc.
>
> Freeswan will interoperate with most if not all cisco IPSec implementations,
> for very broad interpretations of "interoperate". There are some things
> that freeswan will not do. One of those is Cisco's proprietary (I think)
> vpngroup protocol. Another is xauth authentication. These are often used
> by recent cisco vpn installations.
>
> So the answer is, you can get it to work, if and only if the person running
> your vpn box is willing to cooperate with you to make it work. Otherwise,
> you're probably stuck.
>
> -Joe
>
> > -----Original Message-----
> > From: users-admin_at_lists.freeswan.org
> > [mailto:users-admin_at_lists.freeswan.org]On Behalf Of Werner Hunsicker -
> > Sun Germany Exception Management - Frankfu
> > Sent: Wednesday, April 24, 2002 6:08 AM
> > To: users_at_lists.freeswan.org
> > Cc: werner.hunsicker_at_arcormail.de
> > Subject: [Users] Question: linux/Sparc connected to Cisco (VPN)
> >
> >
> > Hi all,
> >
> > to work from home I got a Sun Ultra1 System. The system is
> > running SuSe 7.4
> > (kernel 2.4.14) and is connected to the internet via ADSL (T-DSL)
> > without using
> > a DSL Router.
> >
> > Under Windows we have to use the vpn client from cisco to establish the
> > connection.
> >
> > This works!
> >
> > Under Solaris/Sparc there is a Cisco vpn client as well, but due
> > to a SW problem
> > the client doesn't work with pppoe ;-((
> >
> >
> > Because I am not really a friend of MS I tried to find other
> > possibilities and I
> > came to the conclusion to install Linux on the Sparc Box and I
> > heard that VPN
> > over pppoe should work with Linux?!
> > The problem is that there is no Cisco VPN client available for
> > Linux/Sparc ;-(
> > Some articles in the News groups recommended Free/SWAN as a
> > solution for that
> > problem.
> >
> > SuSe 7.3 contains the Free/Swan SW, but I don't know how to
> > configure my box.
> >
> > My Config is:
> >
> > xxxxxxxxxXXXXXXXXXX-------------------XXXXXXXXXXXX--xxxxx---------
> > Ultra1 ADSL-Modem Internet Cisco Router FW Intranet
> >
> >
> > On a Unix Box connected via DSL Router I have to use:
> >
> > open_tunnel -d hme0 vpn-xxxxx.sun.com user-id_at_vpn
> > Then I have to enter:
> > Shared key for user-id_at_vpn:
> > PAP Authentication secret:
> > RADIUS Password:
> >
> >
> >
> > Does anybody know if I can use Free/SWAN to connect to our
> > Intranet and if yes
> > how has the config files looks like, that I can use RADIUS
> > Authentification?
> >
> >
> > For any hints I would very appreciative
> >
> >
> >
> > Best wishes,
> >
> > Werner Hunsicker
> >
> >
> > _______________________________________________
> > Users mailing list
> > Users_at_lists.freeswan.org
> > http://lists.freeswan.org/mailman/listinfo/users
> >
>

Best wishes,

Werner Hunsicker

/#######################################################################\
# #
# Werner Hunsicker #
# #
# Sun Microsystems GmbH #
# System Service #
# Mission Critical Consultant #
# Phone : 06103/752-107 #
# Amperestrasse 6 Fax : 06103/752-161 #
# D-63225 Langen mailto:werner.hunsicker_at_Germany.Sun.COM #
# http://www.sun.de #
\#######################################################################/

_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users

• Next message: Telex_Notes_Blm_1_at_telex.com: "[Users] Report to Recipient(s)"
• Previous message: Marcela Vicecci: "[Users] unsuscribe"
• Maybe in reply to: Werner Hunsicker - Sun Germany Exception Management - Frankfu: "[Users] Question: linux/Sparc connected to Cisco (VPN)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.3 : Mon Jul 29 2002 - 05:19:53 CEST