thr3ads.net - CentOS - [CentOS] openswan and klips ipsec stack [Oct 2014]

If this information is useful, please help other people find it:
Share via:

Twitter
Facebook
Email

Eero Volotinen

2014-Oct-06 18:00 UTC

[CentOS] openswan and klips ipsec stack

Hi List,

Is there easy way to get klips ipsec stack into centos 6? As it makes
firewalling ipsec traffic much easier..

Eero

Steve Clark

2014-Oct-06 19:02 UTC

head link

[CentOS] openswan and klips ipsec stack

On 10/06/2014 02:00 PM, Eero Volotinen wrote:> Hi List,
>
> Is there easy way to get klips ipsec stack into centos 6? As it makes
> firewalling ipsec traffic much easier..
>
> EeroHi Eero,

If you are only concerned about firewalling incoming traffic why would you need
more than:
-A INPUT -p udp -s peerip/32 --sport 500 -d yourip/32 --dport 500 -j ACCEPT
-A INPUT -p esp -s peerip/32 -d yourip/32 -j ACCEPT

-- 
Stephen Clark

Maybe Matching Threads

openswan and ipsec
state of IPSec VPN on CentOS 7: Openswan, strongSwan, RPM packages
IPSec multiple VPN setups
OpenSwan Drop Out Issue
OpenSwan Drop Out Issue

Search for more reasonably related threads

CentOS - Oct 2014 - openswan and klips ipsec stack

[CentOS] openswan and klips ipsec stack

[CentOS] openswan and klips ipsec stack

Maybe Matching Threads