Re: [leaf-user] Newbie help for Road Warrior VPN
1. download the ipsec.lrp 2. down load the docs from FreeSWAN.org and do a lot of reading but don't get depressed. 3. You need a win ipsec client. I suggest SSH Sentinel. Download it, eval is free. 4. Go the FAQ on Sentinel and read about configuring a FreeSWAN host. Essentially in /etc/ipsec.conf you are going to have some default settings then settings for a connection. The settings include your external ip address, the internal network you are allowing access to and a shared secret. You will set up Sentinel to 'match' this and voila. 5. Write back here for help. Craig [EMAIL PROTECTED] on 07/30/2002 09:23:24 AM To: LEAF [EMAIL PROTECTED] cc:(bcc: Phillip Watts/austin/Nlynx) Subject: [leaf-user] Newbie help for Road Warrior VPN Hi folks, I'd like to use my Dachstein 1.0.2 CD, and set up a Road Warrior VPN, but I'm really confused on how to start. While I'm comfortable with Windows and VPN concepts, I'm pretty new to the Linux/Dachstein scene, so hopefully you'll be patient with me. :-) Here's what I have: I have the basic Dachstein CD that I use, and the only thing(s) I have done to get it successfully working is uncomment the correct NIC drivers, and changed the root password. I've backed up those changes to floppy, re-burned a new CD (so all those changes are part of my new CD, and I don't have to use the floppy for them) and everything works fine. Now...I would like to set up the box to accept my Road Warrior client(s)...but I don't know how to start or where to start. All help is appreciated!!! Thank you in advance!!! Have a great week. Best Regards, Craig P.S. The Dachstein box uses two Linksys LNE100-TX NICs (tulip drivers), a Motorola SB4100 Surfboard cable modem, and ATT broadband service. --- This sf.net email is sponsored by: Dice - The leading online job board for high-tech professionals. Search and apply for tech jobs today! http://seeker.dice.com/seeker.epl?rel_code=31 leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html --- This sf.net email is sponsored by: Dice - The leading online job board for high-tech professionals. Search and apply for tech jobs today! http://seeker.dice.com/seeker.epl?rel_code=31 leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] Newbie help for Road Warrior VPN
Thanks Phillip, I see the Dachstein CD already has the ipsec.lrp (and ipsec509.lrp ipsec.o files) on it. Can I just use those? As far as the Windows Ipsec client, I found instructions on using the functionality already built-in to Windows at: http://www.natecarlson.com/include/showpage.php?cat=linuxpage=ipsec-x50 9. That should work shouldn't it? O.K...what should I do now? Thank you. Craig --- This sf.net email is sponsored by: Dice - The leading online job board for high-tech professionals. Search and apply for tech jobs today! http://seeker.dice.com/seeker.epl?rel_code=31 leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] Newbie help for Road Warrior VPN
Can't help you with 509. SSH Sentinel supports it. Can't help you with windows ipsec. I downloaded Sentinel and got it working in an hour because the folks at my office told me the microsoft client was a bear to configure. Never tried it myself. If you use ipsec.lrp you have a choice of shared secret ( an ascii password) and RSA sigkey for authentication. Start with shared secret to get going, much simpler. Then graduate to RSA key, incredibly powerful. You will spend many hours getting this working but it is well worth it to work from home or road without leaving giant holes in your firewall. Craig [EMAIL PROTECTED] on 07/30/2002 11:08:07 AM To: LEAF [EMAIL PROTECTED] cc:(bcc: Phillip Watts/austin/Nlynx) Subject: [leaf-user] Newbie help for Road Warrior VPN Thanks Phillip, I see the Dachstein CD already has the ipsec.lrp (and ipsec509.lrp ipsec.o files) on it. Can I just use those? As far as the Windows Ipsec client, I found instructions on using the functionality already built-in to Windows at: http://www.natecarlson.com/include/showpage.php?cat=linuxpage=ipsec-x50 9. That should work shouldn't it? O.K...what should I do now? Thank you. Craig --- This sf.net email is sponsored by: Dice - The leading online job board for high-tech professionals. Search and apply for tech jobs today! http://seeker.dice.com/seeker.epl?rel_code=31 leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html --- This sf.net email is sponsored by: Dice - The leading online job board for high-tech professionals. Search and apply for tech jobs today! http://seeker.dice.com/seeker.epl?rel_code=31 leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
