Keith Mitchell
2006-Jun-01 19:46 UTC
RE: Openswan 2.2.0 using the the 2.6 Netkey stack(not KLIPS)
I''ve found that openswan works most excellently following the http://www.shorewall.net/IPSEC-2.6.html instructions for the shorewall side (you can ignore the stuff about racoon and setkey - Openswan handles both for you), and following the OpenSwan instructions for setting up then tunnels. Works like a peach for me. -----Original Message----- From: shorewall-users-admin@lists.sourceforge.net [mailto:shorewall-users-admin@lists.sourceforge.net] On Behalf Of info@kws-netzwerke.de Sent: Thursday, June 01, 2006 11:46 AM To: shorewall-users@lists.sourceforge.net Subject: AW: [Shorewall-users] Openswan 2.2.0 using the the 2.6 Netkey stack(not KLIPS) With this links you should find some hints configuring FREESWAN/OPENSWAN http://www.shorewall.net/VPNBasics.html http://www.shorewall.net/IPSEC.html http://www.shorewall.net/IPSEC-2.6.html I´ve running many tunnels with this and the docu gives answer to all the questions you should have and more... -----Ursprüngliche Nachricht----- Von: shorewall-users-admin@lists.sourceforge.net [mailto:shorewall-users-admin@lists.sourceforge.net] Im Auftrag von John Serink Gesendet: Donnerstag, 1. Juni 2006 19:42 An: shorewall-users@lists.sourceforge.net Betreff: [Shorewall-users] Openswan 2.2.0 using the the 2.6 Netkey stack(not KLIPS) Hi All: Here is what I am running: rx1000test:~# uname -a Linux rx1000test 2.6.8-16-486-rx #1 Wed Mar 15 15:33:23 UTC 2006 i586 GNU/Linux rx1000test:~# shorewall version 2.2.3 rx1000test:~# ipsec version Linux Openswan U2.2.0/K2.6.8-16-486-rx (native) Ok, I''ve been through the docs for shorewall 2.2.3 and they have a section on setting up for IPSec but its using the racoon user space tools, not Openswan. The section on Openswan assumes the use of the KLIPS stack rather than the 2.6 kernel''s NETKEY stack or internal stack. Does anyone know how to setup shorewall for a VPN using Openswan and the Netkey stack in kernal 2.6? Cheers, John __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ------------------------------------------------------- All the advantages of Linux Managed Hosting--Without the Cost and Risk! Fully trained technicians. The highest number of Red Hat certifications in the hosting industry. Fanatical Support. Click to learn more http://sel.as-us.falkag.net/sel?cmd=lnk&kid=107521&bid=248729&dat=121642 _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users ------------------------------------------------------- All the advantages of Linux Managed Hosting--Without the Cost and Risk! Fully trained technicians. The highest number of Red Hat certifications in the hosting industry. Fanatical Support. Click to learn more http://sel.as-us.falkag.net/sel?cmd=lnk&kid7521&bid$8729&dat1642 _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users ------------------------------------------------------- All the advantages of Linux Managed Hosting--Without the Cost and Risk! Fully trained technicians. The highest number of Red Hat certifications in the hosting industry. Fanatical Support. Click to learn more http://sel.as-us.falkag.net/sel?cmd=lnk&kid=107521&bid=248729&dat=121642