Hello all,
Hi Jim
Forgive me if this sounds simple, but this is my first swim in the IPSEC ocean. I'm trying to configure an 8.2 MNF box to establish a vpn tunnel between it and a 3COM SuperStack III Firewall. The 3com uses IKE to exchange the public keys and DES or 3DES for the encryption. One thing I noticed about this is that DES is only 56Bit and 3DES is only 168bits. Since I believe it's safe to refuse to set up a VPN on DES, 3DES is my only choice. According to the Mandrake "features list", MNF comes with a number of different algorithms. 1) How do you choose which one to use so that both devices will communicate?
2) How do you tell MNF to use IKE?
IKE is the default method.
3) Under a normal setup, MNF wants a left and right side client. Does it really matter which is on the left or right?
In short, I'm trying to get this tunnel established with another consultant on the 3com side in another state and he doesn't believe it can be done. If it cannot (and I can't see why not) I may have to replace the MNF with a 3com... (READ DON'T WANT THAT FOR MY CLIENT).
Although I've never configured a VPN using the MNF interface, it does seem rather sparse in configuration options. MNF IPSEC is based on the FreeS/wan implementation (http://www.freeswan.org/)
man ipsec.conf might give you some insight. Config. templates live in /usr/share/naat/templates/etc/freeswan/
Hope this helps
Regards -- Marko
PS: please turn *off* 'send as html' in your m$ outbreak express email client. Sending html email to a mailing list is poor netiquette.
____________________________________________________ Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com ____________________________________________________
