I have been using www.shrew.net ipsec (gui) client on my road warrior ubuntu 7.10 (linux) machines very successfully with our openBSD 4.2 vpn/pf gateways. I did have to use an openBSD-side isakmpd.conf method vs. an ipsec.conf/ipsecctl method as I couldn't author an ipsec.conf that worked.
shrew.net has a dependency on ipsec-tools 0.6.n or 0.7.0 (on the linux machine), but it shields you from the grottiness of it while giving the road warrior end-user a click and go vpn session. The shrew.net client is about to version to 2.1. While 2.0.x works for me, if it doesn't for you, then 2.1 has many fixes and enhancements. good luck. -----Original Message----- From: Tom Menari <[EMAIL PROTECTED]> To: [email protected] Subject: IPsec with a Linux road-warrior Date: Sat, 22 Mar 2008 23:23:42 +0000 Delivered-To: [EMAIL PROTECTED] Can anyone reccomend a client configuration for IPsec from a roaming Linux machine that works with OpenBSD's ipsecctl? I have tried Openswan and racoon and both have thier problems. Currently using X509 certificates but if anyone has public keys working that would be good too. Thanks, Tom
