[Users] x509 conf help needed

From: Kai Korpi (kai.korpi_at_cop.fi)
Date: Mon Sep 02 2002 - 16:46:02 CEST

• Previous message: Pronetway: "*****SPAM***** [Users] 企业内部上网管理"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi all,

I need help setting up freeswan with nat and x509. I have 3 kind of roadwarrior clients and each of them have to be able to access different remote subnetwork.

rw1 needs access to 192.168.1.0/24

rw2 needs access to 192.168.2.0/24
 
rw3 needs access to 0.0.0.0/0 but not to 192.168.1.0/24

The big question is can I somehow do this with certificates? Do I need to create 3 different CA certificates? If I can't use CA certificates is there better way to do this?

I also need to use NAT patch. I have freeswan with 4 nics installed and
if that helps?

regards

-Kai-

-- 
************************
Kai Korpi
FINLAND
email: kai.korpi_at_cop.fi
************************
 
"Windows has detected that you have moved your mouse. 
Your system must be restarted for this change to take effect." 
 
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users

• Previous message: Pronetway: "*****SPAM***** [Users] 企业内部上网管理"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Mon Sep 02 2002 - 19:19:53 CEST