[Users] X.509 help needed

Thu, 14 Aug 2003 11:28:40 -0700 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Dear All,

I'm going a bit spare.

I've had several attempts at getting a tunnel between a Windows 2000 machine behind a 
NAT ADSL Router and my network behind my cable-mode attached to a linux NAT firewall + 
IPSec gateway to no avail. :-(

I'm trying to set up this:

+- holly ------+  +- hilly -------+
| Windows 2000 |  | Linux gateway |
|              |  | NIC 1 eth0    |  +-------------+
|              |  |               |==| Cable Modem |====
|              |  |               |  | Dynamic IP  |    "
| NIC 1        |  | NIC 2 eth1    |  | Currently   |    "
| 192.168.16.2 |==| 192.168.16.1  |  | 81.96.76.24 |    "
+--------------+  +---------------+  +-------------+   ...
      .                                               . I .
      .                                               . n .
      .                                               . t .
     ...                                              . e .
    . V .                                             . r .
    . P .                                             . n .
    . N .                                             . e .
     ...                                              . t .
      .                                                ...
      .                                                 "
+- flowers -------+  +-------------------+              "
| Windows 2000 #2 |  | ADSL Router/Modem |              "
|                 |  | Fixed IP          |==============
|                 |  | 82.69.7.234       |
|                 |  | IPSec passthrough |
| NIC 1 eth0      |  | NIC 1             |
| 192.168.0.2     |==| 192.168.0.1       |
+-----------------+  +-------------------+

Now the linux gateway called "hilly" is RedHat 7.3

kernel-2.4.20-18.7                                downloaded from RedHat
freeswan-1.99_x509_0.9.15_2.4.20_18.7-1           downloaded from freeswan.ca
freeswan-module-1.99_x509_0.9.15_2.4.20_18.7-1    ----------- " -------------

So I think the FreeS/WAN gateway has X.509 and NAT-T compiled in.

I'm pretty sure the ADSL Router (a NetGear DG814) has IPSec passthrough.
The machine called "flowers" has http://support.microsoft.com/?kbid=818043#6 installed.

So could someone give me a big hint (read do it all for me :-D) of what ipsec.conf 
files to have at each end?

I've been following http://www.natecarlson.com/linux/ipsec-x509.php with "flowers" as 
the Road Warrior.

TIA

Craig Emery,
Cambridge, UK.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQE/M2spBIRM2chQkvERAtTlAKC7lxjWHYv8sspXmfV3oCxjDJ9DoACg1hLK
6SIz1i0sK8LZyozuMcy4qUY=
=vSKD
-----END PGP SIGNATURE-----

_______________________________________________
FreeS/WAN Users mailing list
[EMAIL PROTECTED]
https://mj2.freeswan.org/cgi-bin/mj_wwwusr

Reply via email to