Ghe!! :D just heard the PLING of my phone of an incomming email when I pushed the send button...<br>Pretty much the same email...<br><br>:D<br><br><div class="gmail_quote">On Thu, Jul 19, 2012 at 1:17 PM, Alex Crow <span dir="ltr"><<a href="mailto:acrow@integrafin.co.uk" target="_blank">acrow@integrafin.co.uk</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Dear Sandra,<br>
<br>
To provide a private IP to the phones, you will probably need to use IPSEC+L2TP - which most phones will support. I personally use Openswan with xl2tpd.<br>
<br>
Good starting points here:<br>
<br>
<a href="http://www.jacco2.dds.nl/networking/openswan-l2tp.html" target="_blank">http://www.jacco2.dds.nl/<u></u>networking/openswan-l2tp.html</a><br>
<br>
Cheers<br>
<br>
Alex<div class="HOEnZb"><div class="h5"><br>
<br>
On 19/07/12 11:59, Sandra Schlichting wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
Dear readers,<br>
<br>
I have a working OpenVPN setup right now, where users can connect the<br>
the private network at home with their computers.<br>
<br>
However most phones only support IPSec, so I would like to offer the<br>
same service for phones with IPSec as I do for computers with OpenVPN.<br>
<br>
Problem<br>
<br>
I can't find any tutorials that describes how to configure OpenSWAN to<br>
offer a private IP to the client.<br>
<br>
With my OpenVPN, clients have to provide a key and passphrase to get<br>
access. On Android/iPhone I suppose a key is not possible, so it would<br>
be fine with only a passphrase.<br>
<br>
Question<br>
<br>
Can OpenSWAN be configured to give a private IP to the clients,<br>
similar to my OpenVPN setup?<br>
<br>
OpenVPN config<br>
<br>
port 1194<br>
proto udp<br>
dev tun<br>
ca /etc/openvpn/easy-rsa/2.0/<u></u>keys/ca.crt<br>
cert /etc/openvpn/secrets/server.<u></u>crt<br>
key /etc/openvpn/secrets/server.<u></u>key<br>
dh /etc/openvpn/secrets/dh1024.<u></u>pem<br>
server 192.168.240.0 255.255.255.0<br>
ifconfig-pool-persist ipp.txt<br>
push "route 10.10.64.0 255.255.252.0"<br>
push "dhcp-option DNS xxx.xxx.xxx.xxx"<br>
duplicate-cn<br>
keepalive 10 120<br>
comp-lzo<br>
user openvpn<br>
group openvpn<br>
persist-key<br>
persist-tun<br>
status /var/log/openvpn-status.log<br>
log-append /var/log/openvpn.log<br>
verb 4<br>
mute 20<br>
plugin /usr/lib64/openvpn/plugin/lib/<u></u>openvpn-auth-ldap.so<br>
"/etc/openvpn/auth/ldap.conf"<br>
script-security 2<br>
auth-user-pass-verify /etc/openvpn/scripts/check_cn_<u></u>on_connect.sh via-env<br>
learn-address /etc/openvpn/scripts/log_<u></u>clients_ip.sh<br>
<br>
Hugs,<br>
Sandra<br>
______________________________<u></u>_________________<br>
<a href="mailto:Users@lists.openswan.org" target="_blank">Users@lists.openswan.org</a><br>
<a href="https://lists.openswan.org/mailman/listinfo/users" target="_blank">https://lists.openswan.org/<u></u>mailman/listinfo/users</a><br>
Micropayments: <a href="https://flattr.com/thing/38387/IPsec-for-Linux-made-easy" target="_blank">https://flattr.com/thing/<u></u>38387/IPsec-for-Linux-made-<u></u>easy</a><br>
Building and Integrating Virtual Private Networks with Openswan:<br>
<a href="http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155" target="_blank">http://www.amazon.com/gp/<u></u>product/1904811256/104-<u></u>3099591-2946327?n=283155</a><br>
<br>
</blockquote>
<br>
<br></div></div><span class="HOEnZb"><font color="#888888">
-- <br>
This message is intended only for the addressee and may contain<br>
confidential information. Unless you are that person, you may not<br>
disclose its contents or use it in any way and are requested to delete<br>
the message along with any attachments and notify us immediately.<br>
<br>
"Transact" is operated by Integrated Financial Arrangements plc<br>
Domain House, 5-7 Singer Street, London EC2A 4BQ<br>
Tel: (020) 7608 4900 Fax: (020) 7608 5300<br>
(Registered office: as above; Registered in England and Wales under number: 3727592)<br>
Authorised and regulated by the Financial Services Authority (entered on the FSA Register; number: 190856)</font></span><div class="HOEnZb"><div class="h5"><br>
<br>
______________________________<u></u>_________________<br>
<a href="mailto:Users@lists.openswan.org" target="_blank">Users@lists.openswan.org</a><br>
<a href="https://lists.openswan.org/mailman/listinfo/users" target="_blank">https://lists.openswan.org/<u></u>mailman/listinfo/users</a><br>
Micropayments: <a href="https://flattr.com/thing/38387/IPsec-for-Linux-made-easy" target="_blank">https://flattr.com/thing/<u></u>38387/IPsec-for-Linux-made-<u></u>easy</a><br>
Building and Integrating Virtual Private Networks with Openswan:<br>
<a href="http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155" target="_blank">http://www.amazon.com/gp/<u></u>product/1904811256/104-<u></u>3099591-2946327?n=283155</a><br>
</div></div></blockquote></div><br>