ect: Re: [CentOS] IPSec multiple VPN setups
Glenn Pierce wrote:
> Yes reinstall. I get you have to purchase a new instance for a time to
> move over.
I'd figure that they just move you to an instance that's already running a
newer version of the o/s, giving you time to test for breakage. I
com/xelerance/Openswan/tree/master/packaging/centos5
>>
>> Additionally, here's some info but I advise against the Racoon IPSec
>> daemon.
>>
>> https://www.centos.org/docs/5/html/5.2/Deployment_Guide/sec-racoon-conf.html
>> https://wiki.debian.org/IPsec
>
Hi I hope someone can answer something I'm sure is quite basic.
I am following the instructions at
https://www.centos.org/docs/5/html/Deployment_Guide-en-US/ch-vpn.html
On setting up a VPN
The part I am having trouble with is when it show the
/etc/racoon/racoon.conf file.
But it doesn't say whay
ltiple VPN setups
err. upgrades?
You mean reinstall? As upgrading between major releases are not supported
in any way on centos / rhel and clones..
--
Eero
2016-03-21 20:33 GMT+02:00 <m.r...@5-cent.us>:
> Glenn Pierce wrote:
> > I asked about upgrading once and got no reply. Does
. Sounds like security nightmare.
21.3.2016 7.47 ip. "Glenn Pierce" <glennpie...@gmail.com> kirjoitti:
> Will ask my boss :) We are hosted on memset so not so easy to update
>
> Thanks
>
> On 21 March 2016 at 17:36, Eero Volotinen <eero.voloti...@iki.fi> wro
/03/2016 18:11
To: "CentOS mailing list" <centos@centos.org>
Subject: Re: [CentOS] IPSec multiple VPN setups
Memset.com ? In real world, rhel 5/centos 5 gets only critical security
patches.
Eero
21.3.2016 7.54 ip. <m.r...@5-cent.us> kirjoitti:
> Glenn Pierce wrote:
> >
key-converter.pl -p < right.pub > /home/glenn/right.pub
On 1 April 2016 at 15:44, Glenn Pierce <glennpie...@gmail.com> wrote:
> Sorry but I have looked for over two days. Trying every command I could find.
>
> There is obviously a misunderstanding somewhere.
>
> After gene
voloti...@iki.fi> wrote:
> It works, try googling for openssl pem conversion
> 1.4.2016 4.32 ip. "Glenn Pierce" <glennpie...@gmail.com> kirjoitti:
>
>> I have tried
>> openssl rsa -in bicester_left.pub -outform pem > bicester_left.pem
>>
>>
Volotinen <eero.voloti...@iki.fi> wrote:
> So you are using pkcs12 on centos:
>
> https://www.sslshopper.com/article-most-common-openssl-commands.html
> --
> Eero
>
> 2016-04-01 17:44 GMT+03:00 Glenn Pierce <glennpie...@gmail.com>:
>
>> Sorry but I have looked
Volotinen <eero.voloti...@iki.fi> wrote:
> You must define connection address and key in ipsec.secrets.
>
> --
> Eero
>
>
> 2016-04-01 19:38 GMT+03:00 Glenn Pierce <glennpie...@gmail.com>:
>
>> Just trying to follow the instructions here
>>
>> https://
I just removed the name. I will be regenerating again.
To be honest if an attacker to get this to work I would buy then a drink :)
On 1 April 2016 at 17:01, Gordon Messmer <gordon.mess...@gmail.com> wrote:
> On 04/01/2016 07:44 AM, Glenn Pierce wrote:
>>
>> Ie
>> ***.se
On 1 April 2016 at 18:39, Eero Volotinen <eero.voloti...@iki.fi> wrote:
> IPSec is very complex with certificates. try first with PSK authentication
> and then with certificates
>
> --
> Eero
>
> 2016-04-01 20:21 GMT+03:00 Glenn Pierce <glennpie...@gmail.com>:
>
iki.fi> wrote:
> You can do any kind of format conversions with openssl commandline client.
>
> Eero
> 1.4.2016 3.56 ip. "Glenn Pierce" <glennpie...@gmail.com> kirjoitti:
>
>> Hi I am trying to setup a libreswan vpn between centos 7 and a Mikrotik
>> router
Hi I am trying to setup a libreswan vpn between centos 7 and a Mikrotik router.
I am try to get the keys working. My problem is the Mikrotik router
wants the key in PEM format
How do I export the keys generated with ipsec newhostkey
into PEM format ?
Thanks
14 matches
Mail list logo