From: Ken Bantoft (ken_at_freeswan.ca)
Date: Fri Dec 06 2002 - 14:55:56 CET
-----BEGIN PGP SIGNED MESSAGE-----
On Fri, 6 Dec 2002, Nicolas Cedraschi wrote:
> Hi everybody
>
> My configuration is as follows: Freeswan is connected to a Cisco router
> as roadwarrior (in this case over GPRS with NAT within the connection).
> The roadwarrior acts as gateway i.e. freeswan is in tunnel mode.
>
> My questions:
> 1. Has the "NAT traversal patch" to be used in this configuration?
Not that I'm aware of - I don't know if Cisco support the IKE
drafts required for NAT-T.
> 2. Has someone experience with the configuration of a cisco router
> if freeswan conencts to it as a roadwarrior? I think PSK for
> authentication is necessary and ESP with 3DES for payload
> confidentiality. Has a virtual loopback interface has to be defined on
> the Cisco router to guarantee that the connection establishment works?
That's been done before, and has appeared on the list and in the
inter-op docs for awhile.
- --
Ken Bantoft The Unoffical FreeS/WAN Site:
ken_at_freeswan.ca http://www.freeswan.ca
PGP Key: finger ken_at_bantoft.org
"We can factor the number 15 with quantum computers. We
can also factor the number 15 with a dog trained to bark
three times." -- Robert Harley, 5/12/01, Sci.crypt
-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
Charset: noconv
iQCVAwUBPfCsbliWUusaxGxpAQHGagP+Mhb56wmU0axgHua6/vusrwlx84P7bfxu
KudzREkkb0Z8q+gc20ZH4ukzBlb1NmTwwXuAjbhtB1Omv8QwmFNCAz573i1QXq77
PzvmCQfaCLgGtA42vDWH6nE/cYqUoo9mCbILKoYTnix+xBrGvyx7hAPvXXBqFHNt
xEuw844ZryQ=
=HrX1
-----END PGP SIGNATURE-----
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.5 : Sat Dec 07 2002 - 05:20:58 CET