Some more feedback (and questions/observations)
1. Under the Firewall -> Tunnel -> online help page, there is a line that reads:
"Here below you'll have an overview of an entire firewall VPN configuration. Fresswan Examples:"
Freeswan is spelt wrong.
2. Under VPN -> OpenVPN - Add OpenVPN Entry - Online help, there is a line that reads:
*
CA Name* my-ca
This parameter will specify the name of the ca certificate. The name of the certificate will be /etc/freeswan/ipsec.d/my-ca.crt in the above example.
I believe this should be /etc/freeswan/ipsec.d/cacerts/ca.crt
And a couple of questions:
1. I want to use OpenVPN instead of ipsec tunnels. The VPN -> OpenVPN online help page reads:
"When you are done make sure you have also configured the tunnels firewall section." however, the tunnels online help page only gives examples for Freeswan and PPTP, and nothing about OpenVPN. Again, i thought Freeswan was being phased out, why is it here? Should Strongswan or Openswan or something be used? Just wondering!?
2. I have no /etc/openvpn directory at all! Is this only created at a later stage and not during installation?
3. I'm sorry to say it, but i don't think there is enough example step-by-step info in the help files in general. Will documentation follow the final release, or will it always be necessary to read the openvpn and other website documentation, and then translate their setup steps into what MNF2 does, in order to get it working. The product is excellent, and I applaud your work, but any product is only going to be as good as someone's ability to use it easily. I'd like to assist in writing documentation, but I'm not too great at figuring out how it all works, not to mention explaining clearly to others how to configure theirs!! Perhaps I can roadtest someone elses documentation, and or check/correct syntax/grammer/spelling,etc. My needs are simple (I think!), i have roaming users dialing up or using DSL to connect to the net, and then will open a vpn connection to the MNF2 box. I am finding it difficult to find out exactly how to configure MNF2 to work with unspecified remote ip addresses trying to connect, and so on. For example, the Add OpenVPN entry has a box for the:
*Remote VPN Point* Remote VPN Point IP (or Netmask address for tap devices)
For example 10.0.0.2
I am assuming this is the client that will be making the connection,but if this client is connecting to the Internet via dialup, their address will keep changing. Obviously I'm completely missing the point, and will probably have to read most of the OpenVPN website documentation before it "clicks" in my mind and all makes sense. I this something that you intend for users of MNF2 to have do, or is this just until the documentation is written? I'll keep reading, but it's an observation, not a criticism.
Keep it up, and I'll keep up the feedback as often as i get to work on it. Thanks.
Dj.
____________________________________________________ Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com ____________________________________________________
