[Openswan dev] Using OpenSwan to connect to CheckPoint with Hybrid Authentication

Mariusz Woloszyn emsi at ipartners.pl
Wed Oct 5 11:08:01 CEST 2005


Hello!

First of all my apologies for cross-posting but I hope that the subject of 
this post might be interesting for users and developers.

I'd like to announce the OpenSClient project which purpose is to enable 
CheckPoint Hybrid Authentication mode support in OpenSwan allowing for
Username/Password (or two factor, like SecureID) authenticated VPNs among 
CheckPoint and Linux. Please see following page for more details:
http://emsi.it.pl/auto/opensclient

The project is based upon Criss Poon findings and OpenSwan patch (see 
thread: http://lists.openswan.org/pipermail/dev/2004-May/000327.html) 
which has been ported to OpenSwan 2.4 and a simple HOWTO explaining how to 
use it and configure to connect.
It's far from beeing perfect so any suggestions are welcome. There are 
also many issues to address like the reauthentication problem and so on 
so don't expect it to be ultimate solution ;)

Another question is whether it's possible to implement this functionality 
(this way or another) in mainstream OpenSwan?

Regards,

-- 
Mariusz Wołoszyn
Internet Security Specialist, GTS - Internet Partners


More information about the Dev mailing list