Displaying 20 results from an estimated 10000 matches similar to: "IPSec VPN Under CentOS 5.4"
2004 Dec 19
6
IPSEC vs OpenVPN
While I have concentrated on support for 2.6 native IPSEC in release
2.2.0, I am still of the opinion that unless you absolutely need IPSEC
compatibility that OpenVPN is a much easier (and in the case of
roadwarriors, a much better) solution.
Having already generated all of the required X.509 certificates, it took
me less than 1/2 hr to replace my IPSEC testbed with an OpenVPN one
using the new
2006 Aug 21
3
Connecting CentOS to IPSEC VPN (Checkpoint FW1)
Hi,
Does anyone have experience using IPSEC on CentOS in order to connect to
vendor IPSEC-based VPN products (specifically Checkpoint FW1) ?
Is the included IPSEC implementation sufficient, or do people have to rely
on OpenSWAN or FreeSWAN ? I'd be testing tomorrow and I'm interested with
experiences others have had and things to look out for.
Thanks in advance,
-- dag wieers, dag
2009 Jun 10
6
Shorewall + IPsec Tunnel
Hi everyone!
First of all, sorry about my bad English and the e-mails extension.
I need some help to implement a VPN connection using shorewall and openswan
as IPSec Tunnel.
My network map:
CLIENT VPN APPLIANCE --> +++INTERNET+++ --> FIREWALL --> OPENSWAN SERVER
(DMZ)
I have two VPN connections with two different subnets to the other end. The
two of then are correctly established.
2003 Apr 07
4
BW using CBQ/tc for VPN Ipsec i/f?
Hi all,
I want to allocate bandwidth for ipsec interface using CBQ/tc.
Suppose the conf. file is like this,
DEVICE=ipsec0,10Mbit,1Mbit
RATE=128Kbit
WEIGHT=10Kbit
PRIO=5
RULE=192.128.1.0/24
Does it work
or
What else options need to be taken care like ipsec packets/protocol/port
# etc.?
C''d anybody suggest please?
regds,
Srikanth.
_______________________________________________
LARTC
2015 Apr 14
3
state of IPSec VPN on CentOS 7: Openswan, strongSwan, RPM packages
I looked in the yum repositories for CentOS 7 and I noticed that there
are no packages for any of the major open source IPSec VPN apps -
Openswan, strongSwan, etc. I'm pretty sure CentOS 6 had Openswan
packages.
What is the current consensus w.r.t. building an IPSec VPN "server"
(concentrator, whatever) on CentOS 7, that will do site-to-site
connections with Cisco hardware at
2013 May 17
1
PF + gif + ipsec + racoon + routing problems results in insecure ipsec vpn
Hi everyone,
I wrote up a post on the FreeBSD forums about the issue I am having. It's rather long so I am providing a link to it here: http://forums.freebsd.org/showthread.php?t=39595
In summary, it seems that when the packets are routed in to the gateway from local network hosts, the src and dst addresses are changed to the public IPs of the tunnel -- at least from the perspective of the
2006 Nov 12
2
ipsec-tools with cisco vpn client
Hi,
anybody successfully running win32 client with Cisco vpn client against
ipsec-tools? I'm looking for elegantly running VPN road warrior solution.
Scenarios are:
- ipsec-tools with Cisco vpn client
- pptpd with Windows XP native client
- OpenVPN with OpenVPN Windows client
- ???
Any hints? Thanks for reply.
David Hrb??
2004 Sep 30
4
IPSec connection from fw itself over vpn
Hello everyone,
I''m not sure whether to place my question here or in the racoon mailing
list or even in that of iptables.
I have created an ipsec connection with racoon in tunnel mode to another
gateway to connect one subnet on each side to each other. This works
fine. Only the ipsec gateway itself can''t send packages to the opposite
subnet.
Shorewall is configured according
2015 Apr 14
2
state of IPSec VPN on CentOS 7: Openswan, strongSwan, RPM packages
On 2015-04-14 11:25, Gordon Messmer wrote:
> On 04/14/2015 11:07 AM, Florin Andrei wrote:
>> I looked in the yum repositories for CentOS 7 and I noticed that there
>> are no packages for any of the major open source IPSec VPN apps -
>> Openswan, strongSwan, etc. I'm pretty sure CentOS 6 had Openswan
>> packages.
>
> libreswan replaced openswan, and is
2010 Mar 10
1
IPSec VPN Setup?
Hello Everyone,
I have been tasked at work with setting up a VPN connection from our
server to a client's network. The only problem is that I have never
done anything like this before, so I am not sure where to start.
We are running CentOS 5.4 on our server. I do not yet know what the
client is running for their VPN, the only thing I know of from the
client, is we need to use IPSec for our
2004 Oct 06
1
Re: VPN/ipsec naming of interfaces
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
claas@rootdir.de wrote:
> Hello!
>
>
> Machine A
> WAN IP: 123.123.123.111
> LAN IP: 192.168.177.1
>
>
> Machine A wants to connect through an IPsec tunnel to 192.168.176.2
tcp 110 (pop3).
>
> kernel: Shorewall:all2all:REJECT:
> IN= OUT=ppp0 SRC=123.123.123.111 DST=192.168.176.2
> LEN=60 TOS=0x10
2005 Feb 05
13
Problem while trying to set up an ipsec vpn
Hi,
I''m asking my question here, because I could not find any answer to my
problem, but I''m affraid shorewall is not the one to blame.
First of all I''m using shorewall version 2.0.15 on two linux box.
I set up an ipsec tunnel beetween those 2 boxes to be ables to connect
2 not routable subnetworks.
Here is my network topology:
10.66.17.0/24 - 10.66.17.1 = eth0
2004 Sep 03
3
traffic queueing and ipsec vpn
Hi all, ive been reading lartc howto, im new about traffic shaping/police.
As far as red (chapter 9 complete) i saw that first the packet passes at the
ingress qdisc, then it passes to the ip stack if the packet is directed to
the box or its forwarded (is my case), then it falls to the egress
classifier/s.
Now, i understand if i have an ipsec vpn at the outside interface, the
egress
2006 Nov 06
1
pptp, ipsec and vpn
Hi All,
This is a general VPN question;
PPTP VPNs seem to be very easy to set up with CentOS as the VPN server
and the built-in windose client, but how do list members feel about the
security vunerabilities reported with the MS implementation?
Specifically the 6 problems reported here :
http://www.schneier.com/pptp-faq.html
or maybe im being paranoid?
Would any of you roll this solution out
2015 Apr 14
1
state of IPSec VPN on CentOS 7: Openswan, strongSwan, RPM packages
On 2015-04-14 11:44, Eero Volotinen wrote:
> 2015-04-14 21:40 GMT+03:00 Florin Andrei <florin at andrei.myip.org>:
>>
>> http://serverfault.com/a/655752/24406
>>
>> If that is accurate, the documentation, and the clustering / load
>> balancing might tilt the balance in the direction of strongSwan.
>>
>>
> Well, both packages can do ipsec to
2002 Jun 21
3
VPN+IPSEC+SHOREWALL
2009 Aug 12
6
Shorewall (Openswan) IPSEC VPN MASQ Problem
Hi,
I have setup a IPSEC VPN using Openswan to connect a Draytek router to a
CentOS 5.2/Shorewall 4.2.9 firewall. The VPN establishes OK but I''m
getting a problem with packets from the left hand subnet getting
masqueraded rather than routed down the IPSEC VPN as though they were
going out onto the net. I''ve spent the last day searching Google and so
far I''ve hit a
2013 Apr 11
2
IKEv2/IPSEC "Road Warrior" VPN Tunneling?
Is there a "cookbook" for setting this up? There are examples for
setting up a tunnel between two fixed-address networks (e.g. a remote
LAN that needs to be "integrated" with a central LAN over IPSec but I
can't find anything addressing the other situation -- remote user(s)
where the connecting IPs are not known in advance, such as a person with
a laptop or smartphone in a
2007 Jan 05
18
GRE over IPSec VPN
Hey guys I''ve been beating my head on this for a few hours. Maybe it is
just a stupid configuration error you can point me at. First here is a
small diagram of what I am trying to configure:
http://6bit.com/img/netdiag.png Currently I only have Shorewall running on
the host on the right of the diagram until I can get this working then I''ll
add it to the other host as well.
2006 Jan 24
3
IPsec, VPN and FreeBSD
Hi:
We intend to build IPSec based VPN server on FreeBSD
platform so that we can access internal network of a
lab. The remote side will use VPN client and could be
from anywhere of the Internet, or may be from the
another site of the company. From the hnadbook, I saw
the sample of site-to-site configurations and we do
have one FreeBSD firewall (running ipfw) on both site
and another one on