Hello all,
This is the first time I'm getting anywhere close to IPsec. I've been
reading the freeswan docs, and seem to get a general idea of how things
are supposed to work.
Well.. here are my specific questions:
1) I'm using freeswan 1.96-1.2 and openssl 0.9.6d-1 with kernel 2.4.18
on debian unstable and I would like to communicate with a windows xp
machine (on my same subnet) securly. I have the necessary tools fo xp
hopefully that is Ipeseccmd and a set of Windows 2000 VPN Tool taken
from http://vpn.ebootis.de./
Debian box /etc/ipsec.conf looks like this:
config setup
interfaces="ipsec0=eth0"
klipsdebug=none
plutodebug=none
plutoload=%search
plutostart=%search
plutowait=no
uniqueids=yes
conn GNU-WIN
auto=add
type=tunnel
left=192.168.1.1
right=192.168.1.2
keyexchange=ike
keylife=8h
keyingtries=3
pfs=yes
rekeymargin=9m
rekeyfuzz=25%
I still have not set the ipsec.conf on the xp side, because I don't
really know how to set that up, and docs seem to be contradictory. I
would like my machine to communicate to the xp machine only via the
ipsec interface using encryption, is this possible, and how must I set
things up?
2) The ultimate thing I'd like to do is this: Set up a VPN using two
Linux freeswan systems over the Internet (for the moment IP's are
dynamic, however will be static eventually), and transparently be able
to make windows machines on each side of the VPN communicate with each
other as if on the same net. Possibly even do trust relations.
Any pointers would be great.
TIA,
David.
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.3 : Mon Jul 29 2002 - 05:20:13 CEST