[Openswan Users] PC-router-PC Independent network setup

Hawks Jim-R80007 jim.hawks at freescale.com
Thu Oct 21 14:26:25 CEST 2004


I'm new to Linux, I'm new to OpenSwan, I'm somewhat new to IPSec - now that I've established my ignorance, I'll ask the question.
 
ENVIRONMENT
- Linux 2.3 and Openswan 1.0.7 tar file.
- 2 PCs (Abbott & Costello) connected to a reference board that acts as a router/gateway between the 2
- Keys are manually entered
- There are no other connections (no other routers/gateways; stand alone lab setup only)
 
STAGE 1: Tunnel from Abbott to Costello
 
I've tried a variety of different configurations in ipsec.conf but can't seem to get this to work.
 
In fact, when I leave Costello in 'bypass' mode and configure Abbott to in transport mode (ipsec.conf has keys etc. for esp) I can still ping Costello from Abbott and run data between them (using Iperf,   <http://dast.nlanr.net/Projects/Iperf/> http://dast.nlanr.net/Projects/Iperf/, if knowing that is of any use). Since this happens, that tells me I'm not encrypting on Abbott at all.
 
STAGE 2: Tunnel from Abbott to reference board; clear from reference board to Costello
 
I'm assuming this will follow the Road warrior to some extent, but since I'm writing, I might as well ask about it also.
 
HELP!
 
If anyone can tell me how to setup ipsec.config for this interesting configuration, I'd appreciate it.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20041021/7930e61b/attachment-0001.htm


More information about the Users mailing list