[Openswan Users] Re: Simultaneous RSASig and PSK
Chris Hudlet
chudlet at rxelite.com
Wed Jul 21 12:05:24 CEST 2004
Nate
Thanks for the reply. Yup I am aware that site to site can use RSA as well
but the firewalls in my remote offices are Zywall boxes and are only capable
of PSK. For all I have read, certs appear to be the only really long-term
manageable and secure solution for XP road warriors.
Thanks again
C.H.
-----Original Message-----
From: users-bounces at lists.openswan.org
[mailto:users-bounces at lists.openswan.org] On Behalf Of
users-request at lists.openswan.org
Sent: Wednesday, July 21, 2004 4:00 AM
To: users at lists.openswan.org
Subject: Users Digest, Vol 8, Issue 35
Send Users mailing list submissions to
users at lists.openswan.org
To subscribe or unsubscribe via the World Wide Web, visit
http://lists.openswan.org/mailman/listinfo/users
or, via email, send a message with subject or body 'help' to
users-request at lists.openswan.org
You can reach the person managing the list at
users-owner at lists.openswan.org
When replying, please edit your Subject line so it is more specific
than "Re: Contents of Users digest..."
Today's Topics:
1. Re: Simultaneous RSASig and PSK? (Salvatore Basso)
----------------------------------------------------------------------
Message: 1
Date: Wed, 21 Jul 2004 11:45:50 +0200
From: "Salvatore Basso" <sasab at pixteam.com>
Subject: Re: [Openswan Users] Simultaneous RSASig and PSK?
To: "Nate Carlson" <natecars at natecarlson.com>,
<users at lists.openswan.org>
Message-ID: <021801c46f07$8246d1b0$0f00000a at pix.locale>
Content-Type: text/plain; charset="iso-8859-1"
----- Original Message -----
From: "Nate Carlson" <natecars at natecarlson.com>
To: <users at lists.openswan.org>
Sent: Tuesday, July 20, 2004 7:24 PM
Subject: Re: [Openswan Users] Simultaneous RSASig and PSK?
> On Tue, 20 Jul 2004, Chris Hudlet wrote:
> > I know this question has been asked before, but there have been a few
> > revisions out since I last saw the answer. Does 2.1.4 support PSK and
> > RSASig (roadwarriors) at the same time like was introduced with 1.0.3?
> > If not, do we know when that feature will be included? I would really
> > like to be able to support Site-to-Site and road warriors on the same
> > box. I asked this question on IRC, but no response. Anyone?
>
> Not sure what the answer is to your specific question, but you are aware
> that you can also use RSASig for site to site, right?
>
Hi, I have a box-linux with ipsec configuration for site-to-site and
road-warriors, now I use RSASig for site-to-site anche PSK for road-warrior
(road-warrior not functionally but for a diefferent problem, if you are
interesting you can to see thread with subject "Problem with connection
road"),
for road-warrior I use:
auto=add
and for site-to-site I use:
auto=start
You must consider what XP vpn client use only psk and certificate and not
use rsasig for road-warrior !
Bye.
----------
Salvatore.
---
[This E-mail scanned for viruses by Declude Virus]
------------------------------
_______________________________________________
Users mailing list
Users at lists.openswan.org
http://lists.openswan.org/mailman/listinfo/users
End of Users Digest, Vol 8, Issue 35
************************************
More information about the Users
mailing list