<br><font size=2 face="sans-serif">To clear up the opp DNS errors I created
the correct dns record internally does this need to be in my external dns
records or did I just not configure something correctly. I do have my vpn
server acting as a caching DNS server only. Will that be a problem? </font>
<br>
<br>
<br><font size=2 face="sans-serif"><br>
</font><font size=1 color=blue face="Verdana"><b>Version check and ipsec
on-path
[OK]</b></font>
<br><font size=1 color=blue face="Verdana"><b>Linux Openswan U2.3.0/K2.6.8-24.11-smp
(netkey)</b></font>
<br><font size=1 color=blue face="Verdana"><b>Checking for IPsec support
in kernel
[OK]</b></font>
<br><font size=1 color=blue face="Verdana"><b>Checking for RSA private
key (/etc/ipsec.secrets)
[OK]</b></font>
<br><font size=1 color=blue face="Verdana"><b>Checking that pluto is running
[OK]</b></font>
<br><font size=1 color=blue face="Verdana"><b>Two or more interfaces found,
checking IP forwarding
[OK]</b></font>
<br><font size=1 color=blue face="Verdana"><b>Checking NAT and MASQUERADEing
[OK]</b></font>
<br><font size=1 color=blue face="Verdana"><b>Checking for 'ip' command
[OK]</b></font>
<br><font size=1 color=blue face="Verdana"><b>Checking for 'iptables' command
[OK]</b></font>
<br><font size=1 color=blue face="Verdana"><b>Checking for 'setkey' command
for NETKEY IPsec stack support [OK]</b></font>
<br>
<br><font size=1 color=blue face="Verdana"><b>Opportunistic Encryption
DNS checks:</b></font>
<br><font size=1 color=blue face="Verdana"><b> Looking for
TXT in forward dns zone: chpas-linuxvpn
[MISSING]</b></font>
<br><font size=1 color=blue face="Verdana"><b> Does the machine
have at least one non-private address?
[OK]</b></font>
<br><font size=1 color=blue face="Verdana"><b> Looking for
TXT in reverse dns zone: 135.120.246.65.in-addr.arpa. [MISSING]<br>
<br>
Thanks</b></font>
<br>
<br>
<br><font size=1 color=blue face="Verdana"><b>Douglas Sterner</b></font><font size=1 color=blue><b>
</b></font><font size=1 color=blue face="Verdana"><b><br>
</b></font>