[Openswan Users] A Test Setup

[Hawks Jim-R80007]

I'm new to Linux, I'm new to OpenSwan, I'm fairly new to IPSec - now that I've established my ignorance, I'll ask the question.
 
ENVIRONMENT
- Linux 2.3 and Openswan 1.0.7 tar file.
- 2 PCs (Abbott & Costello) connected to a reference board that acts as a router/gateway between the 2
- Keys are manually entered
- There are no other connections (no other routers/gateways; stand alone lab setup only)
 
STAGE 1: Tunnel from Abbott to Costello (Transport mode?)
 
I've tried a variety of different configurations in ipsec.conf but can't seem to get this to work.
 
In fact, when I leave Costello in 'bypass' mode and configure Abbott to encrypt (ESP set, SPI set, etc.) I can still ping Costello from Abbott and run data between them (using Iperf,  http://dast.nlanr.net/Projects/Iperf/ <http://dast.nlanr.net/Projects/Iperf/> , if knowing that is of any use). Since this happens, that tells me I'm not encrypting on Abbott at all.
 
STAGE 2: Tunnel from Abbott to reference board; clear from reference board to Costello
 
I'm assuming this will follow the Road warrior to some extent, but since I'm writing, I might as well ask about it also.
 
HELP!
 
If anyone can tell me how to setup ipsec.config for this interesting configuration, I'd appreciate it.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20041020/a226b659/attachment.htm