re: freeswan 2.00 on bob - redhat 8, patched kernel 2.4.20-13.8
hi all,
hopefully a simple question
+-----+ +------+
|alice| ------------------------ | bob |
+-----+ +------+
192.168.0.10 192.168.0.1
actually, i found that configuring ipsec for a complicated setup is easier than this
one ;-)
alice is a workstation(s) on a subnet connecting to bob (a server) for
various ip services (web, smtp, etc.) -- note that bob is not connected
to the outside world and has no default route.
bob wants alice to encrypt her communications to him with ipsec. bob's
an idiot, and has read the howto's over an over, and cannot make it
work. so far, bob has:
[EMAIL PROTECTED] cat /etc/ipsec.conf
version 2.0
config setup
interfaces="ipsec0=eth0"
and bob has his dns correctly configured for himself as well as alice:
[EMAIL PROTECTED] ipsec verify
Checking your system to see if IPsec got installed and started correctly
Version check and ipsec on-path [OK]
Checking for KLIPS support in kernel [OK]
Checking for RSA private key (/etc/ipsec.secrets) [OK]
Checking that pluto is running [OK]
DNS checks.
Looking for forward key for bob.manchotnetworks.net [OK]
Does the machine have at least one non-private address [OK]
Two or more interfaces found, checking IP forwarding [OK]
Checking NAT and MASQUERADING
[EMAIL PROTECTED] ipsec verify
Checking your system to see if IPsec got installed and started correctly
Version check and ipsec on-path [OK]
Checking for KLIPS support in kernel [OK]
Checking for RSA private key (/etc/ipsec.secrets) [OK]
Checking that pluto is running [OK]
DNS checks.
Looking for forward key for drs1.manchotnetworks.net [OK]
Does the machine have at least one non-private address [OK]
Two or more interfaces found, checking IP forwarding [OK]
Checking NAT and MASQUERADING [N/A]
what configurations whould bob and alice have so that alice encrypts to
bob without fail?
thanks!!!!
ching
--
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://www.redhat.com/mailman/listinfo/redhat-list
