Dario Lesca
2002-Mar-21 09:54 UTC
[Shorewall-users] HowTo Install VPN with IPSEC on RedHat 7.2
Hi, someone could show me the steps follow in order to install VPN with IPSEC on RedHat 7.2? I suppose that the RedHat 7.2 standard kernel (2.4.9-31) is not configured for this ... probably I will have to install FreeSwan? Let me know Many Thanks ------- Dario Lesca (d.lesca@osra.it)
dgilleece
2002-Mar-21 14:34 UTC
[Shorewall-users] HowTo Install VPN with IPSEC on RedHat 7.2
Dario, I know the purists won''t agree, but I have taken a different approach to IPSec implementations. Since a firewall needs to be a very minimal configuration, it is a pain to install all of the required development tools for compiling your own kernel, then uninstall them afterward. If you are new to Linux, the idea of compiling a kernel on another machine and copying to the target system is more than you want to attempt, and/or you don''t have an additional machine to spare for the job. Enough of the setup. I love Red Hat, but when I need IPSec, I use SuSE --- because Freeswan works right out of the box on SuSE 7.3. It has the 2.4 kernel, a very useable interface, and decent support. It uses slightly different system configs than Red Hat, but they don''t take long to learn --- less time than compiling your own kernel, for sure. I have some notes on Shorewall/SuSE, if you would be interested. Best of luck, Dan Political Footnote: The only reason Red Hat can''t offer Freeswan is because our wise legislators seem to believe that terrorists only buy encryption from the US, so stopping it here will stop it everywhere. As the most glaring example of human stupidity ever, take the following example: I purchase SuSE from my local software store, put it in a FedEx box, and ship it back to Germany WHERE IT CAME FROM, and I am violating a "munitions export" law. If a terrorist goes into a European software store, he can buy one copy of SuSE and install as many encrypted systems as desired, with as strong a key as he chooses. But Red Hat loses my business, so some lawmakers can claim to have done "something." I use my purchase of SuSE as an example of the idiocy of this law ---and to demonstrate its economic impact to companies such as Red Hat. ----- Original Message ----- From: "Dario Lesca" <d.lesca@ivrea.osra.it> To: "Shorewall Firewall" <shorewall-users@shorewall.net> Sent: Thursday, March 21, 2002 3:54 AM Subject: [Shorewall-users] HowTo Install VPN with IPSEC on RedHat 7.2> Hi, someone could show me the steps follow in order to > install VPN with IPSEC on RedHat 7.2? > > I suppose that the RedHat 7.2 standard kernel (2.4.9-31) > is not configured for this ... probably I will have to install FreeSwan? > > Let me know > > Many Thanks > > ------- > Dario Lesca (d.lesca@osra.it) > > _______________________________________________ > Shorewall-users mailing list > Shorewall-users@shorewall.net > http://www.shorewall.net/mailman/listinfo/shorewall-users >