Re: setting up vpn client on a freebsd workstation
On Mon, 23 Jan 2006, Vaida Bogdan wrote: I don't need openvpn, I need IPSEC (KAME). So none of the proposed solutions work. I am the FreeBSD Client in the configuration so I can't change the server vpn implementation. Some basic questions: are your certificates self-signed? are your certificates and the linux ones signed by the same CA? you need to send your certificate and your CA's certificate to the linux admin so s?he can install them in the linux box. For the local config, look here: http://ezine.daemonnews.org/200502/ipsec.html Hope this helps Fer ___ freebsd-security@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: setting up vpn client on a freebsd workstation
I don't need openvpn, I need IPSEC (KAME). So none of the proposed solutions work. I am the FreeBSD Client in the configuration so I can't change the server vpn implementation. On 1/22/06, Martin Hudec [EMAIL PROTECTED] wrote: Hello, Vaida Bogdan wrote: I have the following network: External Interface External Interface ccc.ccc.ccc.ccc aaa.aaa.aaa.aaa | | -- VPN -- Internet -- FreeBSD Client (NATed extip: bbb.bbb.bbb.bbb) | FW-1 Protected Net ddd.ddd.ddd.ddd/24 VPN: ipsec freeswan (UDP encapsulated tunnel) ccc.ccc.ccc.ccc has port 136/UDP open for this I also have the following certs: cert.pem, key.pem crl.pem and CA.pem I am behind internal ips allocated by dhcp. I need to connect to an ip in the Protected Net area. Are you connecting to Windows VPN server or VPN router or what? Maybe net/pptp-client will be enough for you.. Martin ___ freebsd-security@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-security@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to [EMAIL PROTECTED]
setting up vpn client on a freebsd workstation
I have the following network: External Interface External Interface ccc.ccc.ccc.ccc aaa.aaa.aaa.aaa | | -- VPN -- Internet -- FreeBSD Client (NATed extip: bbb.bbb.bbb.bbb) | FW-1 Protected Net ddd.ddd.ddd.ddd/24 VPN: ipsec freeswan (UDP encapsulated tunnel) ccc.ccc.ccc.ccc has port 136/UDP open for this I also have the following certs: cert.pem, key.pem crl.pem and CA.pem I am behind internal ips allocated by dhcp. I need to connect to an ip in the Protected Net area. It's my first VPN connection and I'm having problems with it. I tried following the handbook but it gets into racoon configs and I'm seeking a simpler implementation. I also found papers regarding pptp and pipsec. The problem is I don't know which one to use. Could anyone point me to a paper and the differences in the configs for my scenario? ___ freebsd-security@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: setting up vpn client on a freebsd workstation
Hello, Vaida Bogdan wrote: I have the following network: External Interface External Interface ccc.ccc.ccc.ccc aaa.aaa.aaa.aaa | | -- VPN -- Internet -- FreeBSD Client (NATed extip: bbb.bbb.bbb.bbb) | FW-1 Protected Net ddd.ddd.ddd.ddd/24 VPN: ipsec freeswan (UDP encapsulated tunnel) ccc.ccc.ccc.ccc has port 136/UDP open for this I also have the following certs: cert.pem, key.pem crl.pem and CA.pem I am behind internal ips allocated by dhcp. I need to connect to an ip in the Protected Net area. Are you connecting to Windows VPN server or VPN router or what? Maybe net/pptp-client will be enough for you.. Martin ___ freebsd-security@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to [EMAIL PROTECTED]