Lynn Avants ([EMAIL PROTECTED]) had this to say on 02/10/03 at 22:05:
> On Monday 10 February 2003 06:31 pm, Mike Leone wrote:
> > Hopefully, we'll find out soon. I followed the Shorewall VPN document to
> > the letter, and now will be trying to verify my ipsecrets.conf entries.
> >
> > (left is m
On Monday 10 February 2003 06:31 pm, Mike Leone wrote:
> Hopefully, we'll find out soon. I followed the Shorewall VPN document to
> the letter, and now will be trying to verify my ipsecrets.conf entries.
>
> (left is me, right is them - do I have that right? If so, I have all the
> entries, except
Lynn Avants ([EMAIL PROTECTED]) had this to say on 02/10/03 at 19:17:
> On Monday 10 February 2003 10:58 am, Charles Steinkuehler wrote:
>
> > I am unaware of any issue that would prevent you from continuing to use
> > PSKs after switching to the 509 version of FreeS/WAN. As far as I know,
> > P
On Monday 10 February 2003 10:58 am, Charles Steinkuehler wrote:
> I am unaware of any issue that would prevent you from continuing to use
> PSKs after switching to the 509 version of FreeS/WAN. As far as I know,
> PSKs work identically between the "plain" and x.509 patched versions.
That might
Michael Leone wrote:
Lynn Avants said:
the 509 package if you are not using certs, the 509 package probably
will not work with PSK's. --
It won't? Shoot. I do want to move to using certs, both between my Pix and
for any remote clients to my Bering box that I may have in future. But at
the momen
> >> However, I have changed /etc/network/options, and changed spoofprotect
> >> to no. Doesn't that turn off route filtering?
> >
> > It's set in shorewall configuration (interfaces(?)).
>
> I thought it might, but the Bering docs indicate otherwise - that the
> easiest way is by changing /etc/ne
Lynn Avants said:
> It would definately be in your best interest to read the Shorewall
> Ipsec/VPN page on http://www.shorewall.net . IPSec definately won't
> work with Shorewall unless you configure shorewall correct. Do not use
OK. Haven't gotten that far yet; was just following the Bering docs
On Monday 10 February 2003 08:08 am, Michael Leone wrote:
> >> However, I have changed /etc/network/options, and changed spoofprotect
> >> to no. Doesn't that turn off route filtering?
> >
> > It's set in shorewall configuration (interfaces(?)).
>
> I thought it might, but the Bering docs indicate
K.-P. Kirchdörfer said:
> Am Montag, 10. Februar 2003 06:19 schrieb Mike Leone:
>> OK; so I think I'm making progress ...
>>
>> Anyway, when ipsec starts, I get:
>>
>> # svi ipsec start
>> ipsec_setup: Starting FreeS/WAN IPsec 1.99...
>> ipsec_setup: Using /lib/modules/ipsec.o
>> ipsec_setup: WARN
Am Montag, 10. Februar 2003 06:19 schrieb Mike Leone:
> OK; so I think I'm making progress ...
>
> Anyway, when ipsec starts, I get:
>
> # svi ipsec start
> ipsec_setup: Starting FreeS/WAN IPsec 1.99...
> ipsec_setup: Using /lib/modules/ipsec.o
> ipsec_setup: WARNING: eth0 has route filtering turne
On Wed, 21 Aug 2002, Jeff Lush wrote:
>
> Thank you for pointing me in the right direction. Thanks to your updated
> information I can now successfully connect (and disconnect) with both SSH
> Sentinel and a Linksys VPN appliance without issue. RTFM once again saves
> the day!
>
Glad to hear t
On 8/20/02 10:22 AM, Tom Eastep <[EMAIL PROTECTED]> declared:
> I've also updated that page -- it was out of date in the respect that it
> talked about a 'gw' zone which was a Shorewall 1.[12] feature that was not
> carried forward to Shorewall 1.3. Hopefully it will be clearer now...
>
> Jeff -
On Mon, 19 Aug 2002, Chad Carr wrote:
> On Mon, 19 Aug 2002 13:07:45 -0700 (PDT)
> "Tom Eastep" <[EMAIL PROTECTED]> wrote:
>
> >
> > http://www.shorewall.net/IPSEC.htm.
> >
> > PLEASE folks -- at least _try_ to find this kind of thing on the
> > Shorewall site before posting.
>
>
> Hey! I
On Mon, 19 Aug 2002, Chad Carr wrote:
> On Mon, 19 Aug 2002 13:07:45 -0700 (PDT)
> "Tom Eastep" <[EMAIL PROTECTED]> wrote:
>
> >
> > http://www.shorewall.net/IPSEC.htm.
> >
> > PLEASE folks -- at least _try_ to find this kind of thing on the
> > Shorewall site before posting.
>
>
> Hey! I
On Mon, 19 Aug 2002 13:07:45 -0700 (PDT)
"Tom Eastep" <[EMAIL PROTECTED]> wrote:
>
> http://www.shorewall.net/IPSEC.htm.
>
> PLEASE folks -- at least _try_ to find this kind of thing on the
> Shorewall site before posting.
Hey! I have a crazy idea! Why don't Lynn and I point to your site i
On Mon, 19 Aug 2002, Jeff Lush wrote:
> Hello all,
>
> I've got bering 1.0rc3 with ipsec509 up and running off a dual floppy
> install, but I'm having a bit of trouble. I'm using SSH Sentinal to connect
> from a win98 machine, and on the first connection, it works great; however,
> any connectio
16 matches
Mail list logo
