I defer to Timo, but which distro of Linux are you using? I run everything on
Ubuntu v12 LTS, if you're using Alpine distro I'm not familiar as much.
Sent from my iPhone
> On May 27, 2014, at 3:29 AM, masoom alam wrote:
>
> Any clue:
>
> CC nhrp/admin.o
> CC nhrp/libev.o
> nhr
Any clue:
CC nhrp/admin.o
CC nhrp/libev.o
nhrp/libev.c: In function ‘evpipe_write’:
nhrp/../libev/ev.c:1236:17: warning: ignoring return value of ‘write’,
declared with attribute warn_unused_result [-Wunused-result]
nhrp/../libev/ev.c:1240:15: warning: ignoring return value of ‘write’
HI Every one,
Do we really need the two interfaces mentioned in the
/etc/network/interfaces
auto bond0.256 iface bond0.256 inet static address <%ISP1_IP_ADDRESS%>
netmask <%ISP1_NETMASK%> auto bond0.257 iface bond0.257 inet static address
<%ISP2_IP_ADDRESS%> netmask <%ISP2_NETMASK%>
(cf. http
Thanks Timo and Lee for the detailed answers.
On Mon, May 19, 2014 at 10:17 AM, Timo Teras wrote:
> On Sun, 18 May 2014 07:25:22 +0500
> masoom alam wrote:
>
> > Thanks for the answer.
> >
> > What are the strong points for StrongSWAN for you to select it as a
> > replacement for ipsec-tools
On Sun, 18 May 2014 07:25:22 +0500
masoom alam wrote:
> Thanks for the answer.
>
> What are the strong points for StrongSWAN for you to select it as a
> replacement for ipsec-tools? And what are the issues that you dont
> like.
strongSwan seems to have evolved one of the most comprehensive open
Masoom, ipsec with NAT is handled via NAT-T specification. Your question
really is more fundamental to general how IPSec works as oppose to openNHRP
which is the focus of this list. My suggestion would be to practice setting up
basic point-to-point IPSec over NAT first and get that working. O
AH is not offering encryption. I never saw it in use.
For me is not clear. Who is doing nat? As I said in a previous mail if the
VPN endpoint is behind nat the only thing you have to forward to it is udp
500 and 4500.
-
Sincerely / Cu stimă,
Alin Gruiescu
Tel: +40 7711 03172
On Sun, May 18,
An illustrative guide to ipsec (
http://www.unixwiz.net/techtips/iguide-ipsec.html) read as:
AH and NAT — Not Gonna Happen
Though AH provides very strong protection of a packet's contents because it
covers *everything* that can be possibly considered immutable, this
protection comes at a cost: AH
Thanks for the answer.
What are the strong points for StrongSWAN for you to select it as a
replacement for ipsec-tools? And what are the issues that you dont like.
On Sat, May 17, 2014 at 1:20 PM, Timo Teräs wrote:
> On Sat May 17 2014 04:25:49 AM EEST, masoom alam
> wrote:
>
> > Another th
On Sat May 17 2014 04:25:49 AM EEST, masoom alam wrote:
> Another thing that I am looking in to is that what are the pros n cons of
> using ipsec-tools with opennhrp than the strongswan. I am aware that
> there was some work going on on the API level integration of both
> projects. But why we can
Thanks a lot lee.
Another thing that I am looking in to is that what are the pros n cons of
using ipsec-tools with opennhrp than the strongswan. I am aware that there
was some work going on on the API level integration of both projects. But
why we can't use them independently on a single system be
Masoom,
Ok so for your first question on getting it to work on ubuntu. I did a make
install from source » Here’s what you need to do:
STEP 1 wget
http://downloads.sourceforge.net/project/opennhrp/opennhrp/opennhrp-.tar.bz2
STEP 2 tar -xjvf opennhrp-.tar.bz2
STEP 3 cd opennhrp-/
STEP 4 make
ST
Hello,
Forward internally udp 500 and 4500. ISAKMP and ISAKMP over NAT. Done that
and is working just fine. I have the HUB behind NAT.
-
Sincerely / Cu stimă,
Alin Gruiescu
Tel: +40 7711 03172
On Fri, May 16, 2014 at 3:55 PM, Lee Cardona wrote:
> Hi Masoom, yes you can do that,.. I need
Hi Masoom, yes you can do that,.. I need to look at my setup ― been awhile
since I did it but what you layout is 100% possible. The external firewall you
speak of just needs to allow IPSec traffic. Let me dig up my setup and I'll
provide some additional details shortly.
Sent from my iPhone
Can do do the following:
OpenNHRP on ubuntu + Ipsec-tools for Ipsec + Iptables for handling Natting
if our Ubuntu machine is behind the firewall?
All of this is to enable OpenNHRP on a linux machine with Ipsec but it is
behind the firewall
Please guide.
On Thu, May 15, 2014 at 7:49 AM, Lee C
Yes, for example it runs great on Ubuntu.
Sent from my iPhone
> On May 14, 2014, at 9:15 PM, masoom alam wrote:
>
> Does OpenNHRP is really for Alpine linux? I mean will it work on any other
> distribution?
>
> Thanks
>
>
>> On Wed, May 14, 2014 at 5:39 PM, Timo Teras wrote:
>> On Wed, 1
Does OpenNHRP is really for Alpine linux? I mean will it work on any other
distribution?
Thanks
On Wed, May 14, 2014 at 5:39 PM, Timo Teras wrote:
> On Wed, 14 May 2014 16:37:11 +0500
> masoom alam wrote:
>
> > Hi every one,
> >
> > I am new bie trying to install OpenNHRP between two VMs on m
On Wed, 14 May 2014 16:37:11 +0500
masoom alam wrote:
> Hi every one,
>
> I am new bie trying to install OpenNHRP between two VMs on my laptop.
> I am trying to follow
> http://wiki.alpinelinux.org/wiki/Dynamic_Multipoint_VPN_%28DMVPN%29
>
> However, the VLAN capable switch really confuses me.
18 matches
Mail list logo
