Paul - Thanks for that pointer. When I was poking around at the Windows client, I discovered that challenge / response was another option that I could make work, and it looks as if this patch supports that mode.<div><br></div>
<div>I'm guessing that I will have more questions, but for now, I just need to get that patch compiled in.</div><div><br></div><div>Thanks,</div><div>Clark<br><br><div class="gmail_quote">On Tue, Mar 1, 2011 at 8:18 PM, Paul Wouters <span dir="ltr"><<a href="mailto:paul@xelerance.com">paul@xelerance.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;"><div><div></div><div class="h5">On Mon, 28 Feb 2011, Clark Case wrote:<br>
<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
My apologies in advance if I say anything stupid below. It is only out of complete ignorance.<br>
I was lucky enough to receive one of the Google CR 48 netbooks, and I'm trying to figure out how to connect<br>
to my work VPN, CheckPoint VPN-1. Someone who makes images for these netbooks built one with Openswan (see<br>
<a href="http://duh.org" target="_blank">duh.org</a>) (really, that is his url). Before endeavoring to configure Openswan, I'm hoping to get an opinion on<br>
whether it is possible to make the connection or not.<br>
<br>
Here's what I know: I connect to the VPN in Windows using SecureClient. In the connection dialog, there is my<br>
user name, a set, unchanging "Token Number" that I can not change, and a field where I enter my PIN each time<br>
I connect. When I go to Options -> Change Authentication, I can see that I currently am using SercureID with<br>
a soft token.<br>
<br>
I reading through the archive, I think I read that connecting using SecureID with OpenSwan just ain't gonna<br>
work. Or did I read incorrectly?<br>
</blockquote>
<br></div></div>
There is support for "hybrid mode", see contrib/checkpoint-hybrid/openswan-2.6.25-SecureClient.diff<br>
I don't see an option to pass the secureid token though, so you might need to extend that patch.<br><font color="#888888">
<br>
Paul<br>
</font></blockquote></div><br></div>