Hello, The documentation for freeswan/*swan (any that you may find on the net) leaves much to be desired. And that is putting it mildly according to some. There is lots of information, but typically hard follow.
One problem that I have is not being able to understand how it routes/desides to route traffic. I actually gave up learning this part with out first trying. Instead, I setup GRE tunnels and use kernel routing and now zebra/ospfd for load balancing and failover. So far this is working super. But I am still testing. Anyway, try here: http://www.freeswan.org/freeswan_trees/freeswan-2.06/doc/index.html Looks the same but more organized: http://www.linuxsecurity.com/resource_files/cryptography/FreeSWAN-HOWTO/HowTo.html The man pages: http://www.freeswan.org/freeswan_trees/freeswan-2.06/doc/manpage.d/ Download and untar openswan-1.0.9.tar.gz and read the READMES and CHANGES docs. I find them useful: http://cvs.sourceforge.net/viewcvs.py/leaf/src/bering-uclibc/apps/openswan/ More links: http://www.av8n.com/vpn/ipsec+routing.htm My two biggest hurdles were: a) learning through trial and error instead of instructions, b) figuring out how to manage multiple *swan installations (sooner or later you will have to start scripting). Now, since we're on the subject, does any one know the specs for using the ipsec_null.o module? Despite hours of searching, I still can't figure this out. __________________________________ Yahoo! Mail Mobile Take Yahoo! Mail with you! Check email on your mobile phone. http://mobile.yahoo.com/learn/mail ------------------------------------------------------- This SF.Net email is sponsored by: NEC IT Guy Games. Get your fingers limbered up and give it your best shot. 4 great events, 4 opportunities to win big! Highest score wins.NEC IT Guy Games. Play to win an NEC 61 plasma display. Visit http://www.necitguy.com/?r=20 ------------------------------------------------------------------------ leaf-user mailing list: [email protected] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
