<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD><LINK href="D:\Program Files\OE-QuoteFix\styles.css" rel=stylesheet>
<META http-equiv=Content-Type content="text/html; charset=iso-8859-1">
<META content="MSHTML 6.00.2900.2180" name=GENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=#ffffff>
<DIV><SPAN class=q1>&gt; Basic question : I want to know if it's possible to 
build an Openswan<BR>&gt; VPN tunnel between two distant sites (two local 
networks of the same<BR>&gt; company), the first site operating with a 
Checkpoint NG-2 (under<BR>&gt; Nokia) and the other one with Openswan, 
Ipsec-tools, Linux Debian<BR>&gt; Sarge ?&nbsp;&nbsp;&nbsp; <BR>&gt; What should 
be the Ipsec.conf and the iptablesRules ?<BR>&gt; Thanks in advance for your 
help.<BR></SPAN></DIV>
<DIV><SPAN class=q1><FONT color=#000000>#/etc/ipsec/ipsec.conf<BR>version 
2.0<BR>config setup<BR>interfaces="ipsec0=eth1 
ipsec1=eth0"<BR>uniqueids=no<BR>conn 
ipsecc<BR>type=tunnel<BR>left=linuxip<BR>leftsubnet=net_behind_linux<BR>right=checkpointNGip<BR>rightsubnet=net_behind_checkpoint<BR>keyexchange=ike<BR>pfs=yes<BR>esp=3des-sha-modp1536<BR>ike=3des<BR>auto=add<BR>auth=esp<BR>authby=secret<BR><BR><BR>#/etc/ipsec/ipsec.secrets<BR>linuxip&nbsp;heckpointNGip: 
PSK "very_secure_password"</FONT></SPAN></DIV>
<DIV><SPAN class=q1><FONT color=#000000></FONT></SPAN>&nbsp;</DIV>
<DIV><SPAN class=q1><FONT color=#000000>Best Regards</FONT></SPAN></DIV>
<DIV><SPAN class=q1><FONT color=#000000>Sobczak Wojciech</FONT></DIV>
<DIV><BR></DIV></SPAN></BODY></HTML>