OK too fast , too fast
Hugh Fox
Sales Director
www.drcauto.com
drcauto now hosts support newsgroups:
news://news.drcauto.com/drcauto.lt_toolkit
news://news.drcauto.com/drcauto.smart_architect
news://news.drcauto.com/drcauto.accurender_lt
The same groups are accessible via your browser, g
Hugh Fox <[EMAIL PROTECTED]> said:
> Andy,
>
> since you are on-line, here are some more suggestions:
Hugh, go easy. We don't won't to scare Andy off ;->
Let's get it tested and working first. Then well seek improvements and
updates.
Cheers,
--
Darrell May
DMC Netsourced.com
http://
Hugh Fox <[EMAIL PROTECTED]> said:
> One other small comment: The naming convention in the server-manager is
> currently "Virtual private networks". I think that should change
> to "IPSec setup", as PPTP VPNs are already available through the Remote
> Access page.
Makes sense. Also something I
Andy,
since you are on-line, here are some more suggestions:
on you first page have a switch to start / stop the IPSec service
altogether.
on that page have a switch which changes debug from "none" to "all" and vice
versa. Make a note that it should almost always be set to "none"
as we go furt
Gordon Rowell <[EMAIL PROTECTED]> said:
> And now Rocky, for my next trick... :-)
No worries. I believe I got this figured out. If you care to take a
look, your comments are welcomed:
http://myezserver.com/docs/mitel/kernel-src-howto.html
Regards,
--
Darrell May
DMC Netsourced.com
http:/
> As I said earlier, and KLIPS debug = all reported this, my setup was not
> working as the SME was sending out its Authentication Identifier as @[IP
> Addr], and I had set my SnapGear up to be looking for head@work from my
> headoffice so the connection was being dumped before the RSA public keys
Of course to expand the template do
/sbin/e-smith/expand-template /etc/ipsec.conf
And then use /etc/rc.d/init.d/ipsec restart
Andy Worthington
- Original Message -
From: "Hugh Fox" <[EMAIL PROTECTED]>
To: "Hugh Fox" <[EMAIL PROTECTED]>; "Andy Worthington"
<[EMAIL PROTECTED]>; <[EMAIL PR
On Fri, Oct 19, 2001 at 01:31:37PM -, Darrell May <[EMAIL PROTECTED]> wrote:
> [...]
> I think it would be very beneficial if Mitel would provide a HowTo on how
> to download the kernel source, the minimum rpms required to build a
> driver/module that can be made to work on SME5 and then sho
Sorry to appear so inept, but could Andy or Darrell (or someone else
) please let me know the commands to restart IPSec with new/amended
template fragments.
Ta,
Hugh Fox
Sales Director
www.drcauto.com
drcauto now hosts support newsgroups:
news://news.drcauto.com/drcauto.lt_toolkit
news://n
"Darrell May" <[EMAIL PROTECTED]> said:
> Coloring outside the lines are we ;->
I think the more diverse the testing, the more useful our IPSec RPM / Blade
will be ;-) I'm happy to do lots of testing on this, I have pppoe over ADSL
and a dynamic cable IP to test going into a static head office
I can't remember where, but I do recall that in some docs I have read it
recommends a small number of re-tries especially for road-warriors.
This is because it would be unknown exactly which IP would be at the
road-warrior end, so therefore unlimited retries is a waste of bandwidth.
I am testing
I'm just winging it here so please take a look and let me know if I've
missed anything important or made any mistakes.
http://myezserver.com/docs/mitel/kernel-src-howto.html
Regards,
--
Darrell May
DMC Netsourced.com
http://netsourced.com
http://myEZserver.com
--
Please report bugs to [EMA
> cat /etc/e-smith/templates/etc/ipsec.conf/20Default
> conn %default
> # How persistent to be in (re)keying negotiations (0 means very).
> keyingtries=0
> # How to authenticate gateways
> authby=rsasig
>
> As you mentioned, maybe the above 20Default entries need ch
Also thought I'd point out the FreeS/WAN online documentation for testers
to refer to when you need to get under the hood, make and test changes:
http://www.freeswan.org/freeswan_trees/freeswan-1.8/doc/index.html
Regards,
--
Darrell May
DMC Netsourced.com
http://netsourced.com
http://myEZser
Hugh Fox <[EMAIL PROTECTED]> said:
> I tried to set up a link between it and my SnapGear Lite+ at home.
Coloring outside the lines are we ;->
> but the SnapGear asks for an Authentication Identifier.
I'm just new to this but I believe there are two types of authentication
that FreeS/WAN supp
Darrell,
Your RPM installed very nicely on my SME5 (dual proc PII 300 with software
raid SCSI). It generated the keys and advised them where required.
I tried to set up a link between it and my SnapGear Lite+ at home. The home
connection is ADSL with dynamic address provided by pppoe. At present
16 matches
Mail list logo