, on another hand I am reading man
pages for npppd and ipsec on 5.7 and Giovanni's slides from two years
ago
http://www.slideshare.net/GiovanniBechis/npppd-easy-vpn-with-openbsd
for the talk he gave at BSDCan IIRC. I don't need to use RADIUS just a
local authentication database. It is in the base
Hi,
for the talk he gave at BSDCan IIRC. I don't need to use RADIUS just a
local authentication database. It is in the base and it seems very
easy
to configure.
It is.
Is anybody running similar setup in production? Any caveats? Any other
advises before I take a plunge.
Yes I am, with
Dain Bentley wrote:
I'd love a copy! Thanks
+1
On Friday, March 27, 2015, Brian S. Vangsgaard b...@avalanic.dk wrote:
Hi,
for the talk he gave at BSDCan IIRC. I don't need to use RADIUS just
a
local authentication database. It is in the base and it seems very
easy
to
I'd love a copy! Thanks
On Friday, March 27, 2015, Brian S. Vangsgaard b...@avalanic.dk wrote:
Hi,
for the talk he gave at BSDCan IIRC. I don't need to use RADIUS just a
local authentication database. It is in the base and it seems very easy
to configure.
It is.
Is anybody running
am not a Windows uses but it seems that it should be trivial
to setup client side
https://www.hideipvpn.com/2010/03/howto-windows-7-ipsecl2tp-vpn-setup-tutorial/
and avoid customer service requests, on another hand I am reading man
pages for npppd and ipsec on 5.7 and Giovanni's slides from two
Hi,
On Mon, 2 Dec 2013 19:34:57 +0200 (IST)
Or Elimelech o...@xwise.com wrote:
I'm having trouble configuring Windows clients with l2tp over ipsec,
This config works great on OSX/iOS/Android/Linux
I do not know which type of auth/enc/group I should use for Windows clients
I currently
The mail I replied to was too old.. sorry.
On Mon, 16 Dec 2013 18:52:25 +0900 (JST)
YASUOKA Masahiko yasu...@yasuoka.net wrote:
On Mon, 2 Dec 2013 19:34:57 +0200 (IST)
Or Elimelech o...@xwise.com wrote:
I'm having trouble configuring Windows clients with l2tp over ipsec,
This config works
Thanks, I fixed it using the same config I wrote
The problem is my npppd server is behind NAT and my windows needed registry
modification AssumeUDP
Thank you again
Sent from my iPhone
On Dec 3, 2013, at 12:28 AM, Frans Haarman franshaar...@gmail.com wrote:
I have used this with windows 7
Hi,
I'm having trouble configuring Windows clients with l2tp over ipsec,
This config works great on OSX/iOS/Android/Linux
I do not know which type of auth/enc/group I should use for Windows clients
I currently use OpenBSD 5.4 with the following
ike passive esp transport \
proto udp from
I have used this with windows 7 and osx:
ike passive esp transport \
proto udp from $public_ip to any port 1701 \
main auth hmac-sha1 enc 3des group modp1024 \
quick auth hmac-sha1 enc aes \
psk
2013/12/2 Or Elimelech o...@xwise.com
Hi,
I'm having trouble
This works with Windows 8, OSX, Android and iOS:
ike passive esp transport \
proto udp from $public_ip to any port 1701 \
main auth hmac-sha1 enc aes group modp1024 \
quick auth hmac-sha1 enc aes \
psk $psk
On 03 Dec 2013, at 00:28, Frans Haarman
Hi,
first of all, thanks @sthen for your answer (OP has no net access atm).
We are to the point where the clients get ip (windows/linux/OpenBSD) and
traffic is passing through the server as expected.
There is a very strange problem with ssh service though. While internet
traffic
is being routed
What does /etc/ssh/ssh_config look like on the OpenBSD client?
--
Jeff Goettsch
Agricultural and Resource Economics
University of California, Davis
http://agecon.ucdavis.edu/
On Fri, November 22, 2013 6:52 am, haris wrote:
Hi,
first of all, thanks @sthen for your answer (OP has no net access
On Fri, Nov 22, 2013 at 06:41:37PM +0200, Jeff Goettsch wrote:
What does /etc/ssh/ssh_config look like on the OpenBSD client?
The file is the default that comes with OpenBSD. No change there...
--
A: Because we read from top to bottom, left to right.
Q: Why should I start my reply below the
On 2013-11-22, haris ha...@2f30.org wrote:
Hi,
first of all, thanks @sthen for your answer (OP has no net access atm).
We are to the point where the clients get ip (windows/linux/OpenBSD) and
traffic is passing through the server as expected.
There is a very strange problem with ssh
On 2013-11-20, anon ymous ramrunner0...@gmail.com wrote:
Hello list!
If anyone could shed some light to the following i would be thankful..
i have 2 5.4-current boxes, one acting as an npppd server over ipsec
and the other one wishing to be a client.
My understanding is that to accomplish
Hello list!
If anyone could shed some light to the following i would be thankful..
i have 2 5.4-current boxes, one acting as an npppd server over ipsec
and the other one wishing to be a client.
My understanding is that to accomplish that the client needs
to use xl2tpd from ports.
The problem
(public IP)
npppd L2TP/IPsec with NAT-T is not supported yet.
We need 3 more hacks.
1. support FQDN identifier type on isakmpd
2. ignore UDP checksum to pass L2TP messages. (checksums is broken
by IPsec transport mode)
3. npppd must be able to send a L2TP message to different peer
and it works great and runs very fine when used on a
local network.
But I'm having problems when it comes to NAT.
This is my setup:
client (Windows XP) NAT - internet - OpenBSD (public IP)
npppd L2TP/IPsec with NAT-T is not supported yet.
We need 3 more hacks.
1. support FQDN
on a
local network.
But I'm having problems when it comes to NAT.
This is my setup:
client (Windows XP) NAT - internet - OpenBSD (public IP)
npppd L2TP/IPsec with NAT-T is not supported yet.
We need 3 more hacks.
1. support FQDN identifier type on isakmpd
2. ignore UDP
On Mon, Sep 26, 2011 at 7:45 PM, Matt S maschwa...@yahoo.com wrote:
I think you have to enable NAT Traversal in your ipsec.conf file. Check the
man
page on that one. You could try this but I am not sure it will work.
ike passive from any (public-ip) to any ..
Thanks, tried it but
I have been playing around a little with the npppd daemon having setup a
L2TP server for test and learning purposes. The connection is running in
an IPsec tunnel and it works great and runs very fine when used on a
local network.
But I'm having problems when it comes to NAT.
This is my setup:
I think you have to enable NAT Traversal in your ipsec.conf file. Check the
man page on that one. You could try this but I am not sure it will work.
ike passive from any (public-ip) to any ..
23 matches
Mail list logo
