Hi, Thank you for your message. I have fixed all the issues and tried to explain in a few words the fourth question. If you have any comments, please don't hesitate.
Dj <[EMAIL PROTECTED]> writes: > Hi, > Feedback as promised. > > 1. The online help page in the Firewall -> tunnels section has the line: > > "In this section you will able to allow....." > > it should be > > "In this section you will be able to allow...." > 2. The web page in the Firewall - Tunnels - section for Netmapping has the > line: > > "This section allows you to setup the Network Mappping" > > There are 3 p's in mapping! > > 3. In the VPN section page, the introduction paragraphs has a line that > says: > > "The communication between the two firewalls will be encrypted so a third > party will no be able to read the data you're sending on the Internet > between the two isolated networks." > > The "... third party will no be able to..." should have "not" instead of > "no" > > 4. In the VPN -> CA section, some info in the online help describing what > should go in each field of the key entry would be useful. One confusing > area is the "Common Name". In the documentation that came with MNF1, it's > says to create a CA key first, and use the FQDN of the MNF box as the > common name. It then says to go to the "Other Keys" section and create a > key first for the MNF box, copying the same values used for the CA key. > The online help for MNF2 says "Please note that you CANNOT use the same > name as the one used for the ca entry." > If both are the same box, and the Common Name is supposed to be the FQDN, > how can i keep the Common Name different in each area? 5. If Freeswan is > no longer being actively developed, and the beta webpage at > http://www.mandrakelinux.com/en/mnf2-beta.php3 says "strongswan/openswan > replaces the no longer maintained freeswan", why is Freeswan still showing > in the VPN section, and still being used? common name: Common name is the "standard" name of the openssl entry that will be used for the certificate creation. If you use the same name for other keys as the one used for the ca ... then the ca certificate will be replaced by the client one ... and all the certificates will be wrong because the ca certificate is used to sign all the other ones. The ca certificate cannot be removed if one wants to generate other certificates ... freeswan: it's a bit long to explain but I'll try in a few words: Freeswan was the main project, then appearead superfreeswan wich was mainly freeswan with some extra patches. There was also the x509 patch done by the guys from strongsec.com. For different reasons the freeswan project was stopped and both contributors did continue by creating two new projects: openswan and strongswan. These projects use the same logic as freeswan so I thought that I should keep the original name because strongswan is only a flavour of freeswan. I don't know if I make myself clear. > 6. In the VPN - OpenVPN - Add Entry - online help, there is a line that > says: > > " You can change this if the openvpn isetup is complex and there are > several entries" > The "i" needs to be removed from the word "isetup" > > 7. in the same section has 6 above, there is a line that reads: > "precisely what we're chosing here." > Choosing is spelt with two o's, not one. > > 8. in the same section as 6 above, there is a line that reads: > " Name chose for the local entry." This is incorrect, and i expect you > meant to use the word chosen or choice instead of chose" > > 9. The /var/log/httpd2-naat/httpd2-naat.ssl_error_log file reads that > > "File does not exist: /var/www-naat/html/favicon.ico" The file favicon.ico > is in the /var/www/html directory, and can be copied to the directory > above I presume? > > This is all i've found so far. I pass on more as i find it. Dj. > -- Florin http://www.mandrakesoft.com http://people.mandrakesoft.com/~florin/
____________________________________________________ Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com ____________________________________________________
