Darrell, Chris
Just confirming Steve's comments, here is a snippet from my secure log on
SME2
[root@sme2 log]# tail -f secure
Oct 25 09:50:15 sme2 Pluto[1692]: "net.192.168.0.0-net.local" #3467:
up-client command exited with status 1
Oct 25 09:50:18 sme2 Pluto[1692]: "net.192.168.0.0-net.local"
CTED]>
Sent: Wednesday, October 24, 2001 12:59 PM
Subject: Re: [e-smith-devinfo] [DRAFT] FreeS/WAN rpm + Howto available
>
> Steve Bush <[EMAIL PROTECTED]> said:
>
> > Well, right out of the chute, the sme freeswan rpm doesn't work.
> > It sure looks good in the
Steve Bush <[EMAIL PROTECTED]> said:
> Well, right out of the chute, the sme freeswan rpm doesn't work.
> It sure looks good in the manager though!!!
>
> I'm diving into the logs and configs to see if I can find the problem.
H. Ok, well I did mention this was completely_untested_by_my.
H
vinfo" <[EMAIL PROTECTED]>
Sent: Saturday, October 20, 2001 7:48 PM
Subject: [e-smith-devinfo] [DRAFT] FreeS/WAN rpm + Howto available
>
> !WARNING! For devinfo testing on a non-production server only !WARNING!
>
> Completely _untested_ by me at this time. I've simply
Darrell,
I have setup a basic test environment:
LAN1
192.168.0.65
|
192.168.0.1
SME1 (server)
203.132.1.2
|
203.132.1.1
ROUTER (quasi internet)->10.x.x.x (main LAN)->main SME->inet
203.132.2.1
|
203.132.2.2
SME2 (client)
192.168.1.1
|
192.168.1.65
LAN2
All IPs are static except for the 2 LAN ma
Hugh Fox <[EMAIL PROTECTED]> said:
> I have read, and re-read, and re-read all the freeswan docs I can find.
Well I for one very much appreciate all the effort you are putting into
testing this Hugh. You seem to be the only one reporting so far...
Thanks again,
--
Darrell May
DMC Netsource
t;e-smith-devinfo" <[EMAIL PROTECTED]>
Sent: Tuesday, October 23, 2001 10:58 AM
Subject: Re: [e-smith-devinfo] [DRAFT] FreeS/WAN rpm + Howto available
>
> Hugh Fox <[EMAIL PROTECTED]> said:
>
> > In all I made 12 attempts with variations on IPSec configurations at
> &g
Hugh Fox <[EMAIL PROTECTED]> said:
> In all I made 12 attempts with variations on IPSec configurations at
> both ends.
>
> No joy at all. ;o(
With no provided information, we can't comment or offer assistance. Have
you read over:
http://www.freeswan.org/freeswan_trees/freeswan-
1.8/doc/con
Here's a report on my work last night, trying to connect my home SnapGear to
the office SME.
In all I made 12 attempts with variations on IPSec configurations at both
ends.
No joy at all. ;o(
I will build today a SME to go into my home, and see what I can do with it
(dynamic IP provided by ppp
, go to:
http://discussion.drcauto.com
- Original Message -
From: "Darrell May" <[EMAIL PROTECTED]>
To: "e-smith-devinfo" <[EMAIL PROTECTED]>
Sent: Monday, October 22, 2001 12:15 PM
Subject: Re: [e-smith-devinfo] [DRAFT] FreeS/WAN rpm + Howto available
>
Hugh Fox <[EMAIL PROTECTED]> said:
> Andy,
>
> since you are on-line, here are some more suggestions:
Hugh, go easy. We don't won't to scare Andy off ;->
Let's get it tested and working first. Then well seek improvements and
updates.
Cheers,
--
Darrell May
DMC Netsourced.com
http://
Hugh Fox <[EMAIL PROTECTED]> said:
> One other small comment: The naming convention in the server-manager is
> currently "Virtual private networks". I think that should change
> to "IPSec setup", as PPTP VPNs are already available through the Remote
> Access page.
Makes sense. Also something I
om: "Andy Worthington" <[EMAIL PROTECTED]>
To: "Hugh Fox" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>;
"e-smith-devinfo" <[EMAIL PROTECTED]>
Sent: Monday, October 22, 2001 11:01 AM
Subject: Re: [e-smith-devinfo] [DRAFT] FreeS/WAN rpm + Howto availa
> As I said earlier, and KLIPS debug = all reported this, my setup was not
> working as the SME was sending out its Authentication Identifier as @[IP
> Addr], and I had set my SnapGear up to be looking for head@work from my
> headoffice so the connection was being dumped before the RSA public keys
hington"
<[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>; "e-smith-devinfo"
<[EMAIL PROTECTED]>
Sent: Sunday, October 21, 2001 8:02 PM
Subject: Re: [e-smith-devinfo] [DRAFT] FreeS/WAN rpm + Howto available
> Sorry to appear so inept, but could Andy or Darrell (or so
t;[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>;
"e-smith-devinfo" <[EMAIL PROTECTED]>
Sent: Monday, October 22, 2001 9:08 AM
Subject: Re: [e-smith-devinfo] [DRAFT] FreeS/WAN rpm + Howto available
> I can't remember where, but I do recall that in some docs I have read it
> r
"Darrell May" <[EMAIL PROTECTED]> said:
> Coloring outside the lines are we ;->
I think the more diverse the testing, the more useful our IPSec RPM / Blade
will be ;-) I'm happy to do lots of testing on this, I have pppoe over ADSL
and a dynamic cable IP to test going into a static head office
ser, go to:
http://discussion.drcauto.com
- Original Message -
From: "Andy Worthington" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>; "Hugh Fox" <[EMAIL PROTECTED]>;
"e-smith-devinfo" <[EMAIL PROTECTED]>
Sent: Monday, October 22, 2001 4:12
> cat /etc/e-smith/templates/etc/ipsec.conf/20Default
> conn %default
> # How persistent to be in (re)keying negotiations (0 means very).
> keyingtries=0
> # How to authenticate gateways
> authby=rsasig
>
> As you mentioned, maybe the above 20Default entries need ch
Hugh Fox <[EMAIL PROTECTED]> said:
> I tried to set up a link between it and my SnapGear Lite+ at home.
Coloring outside the lines are we ;->
> but the SnapGear asks for an Authentication Identifier.
I'm just new to this but I believe there are two types of authentication
that FreeS/WAN supp
Darrell,
Your RPM installed very nicely on my SME5 (dual proc PII 300 with software
raid SCSI). It generated the keys and advised them where required.
I tried to set up a link between it and my SnapGear Lite+ at home. The home
connection is ADSL with dynamic address provided by pppoe. At present
!WARNING! For devinfo testing on a non-production server only !WARNING!
Completely _untested_ by me at this time. I've simply taken the existing
contrib rpm, edited the source for SME, rebuilt the rpm and updated the
HowTo. Here it is, available for testing:
http://myezserver.com/docs/mitel
22 matches
Mail list logo