re: freeswan 2.00 on bob - redhat 8, patched kernel 2.4.20-13.8
hi all, hopefully a simple question +-----+ +------+ |alice| ------------------------ | bob | +-----+ +------+ 192.168.0.10 192.168.0.1 actually, i found that configuring ipsec for a complicated setup is easier than this one ;-) alice is a workstation(s) on a subnet connecting to bob (a server) for various ip services (web, smtp, etc.) -- note that bob is not connected to the outside world and has no default route. bob wants alice to encrypt her communications to him with ipsec. bob's an idiot, and has read the howto's over an over, and cannot make it work. so far, bob has: [EMAIL PROTECTED] cat /etc/ipsec.conf version 2.0 config setup interfaces="ipsec0=eth0" and bob has his dns correctly configured for himself as well as alice: [EMAIL PROTECTED] ipsec verify Checking your system to see if IPsec got installed and started correctly Version check and ipsec on-path [OK] Checking for KLIPS support in kernel [OK] Checking for RSA private key (/etc/ipsec.secrets) [OK] Checking that pluto is running [OK] DNS checks. Looking for forward key for bob.manchotnetworks.net [OK] Does the machine have at least one non-private address [OK] Two or more interfaces found, checking IP forwarding [OK] Checking NAT and MASQUERADING [EMAIL PROTECTED] ipsec verify Checking your system to see if IPsec got installed and started correctly Version check and ipsec on-path [OK] Checking for KLIPS support in kernel [OK] Checking for RSA private key (/etc/ipsec.secrets) [OK] Checking that pluto is running [OK] DNS checks. Looking for forward key for drs1.manchotnetworks.net [OK] Does the machine have at least one non-private address [OK] Two or more interfaces found, checking IP forwarding [OK] Checking NAT and MASQUERADING [N/A] what configurations whould bob and alice have so that alice encrypts to bob without fail? thanks!!!! ching -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://www.redhat.com/mailman/listinfo/redhat-list