[Openswan Users] Openswan - Checkpoint PSK

Wojciech Sobczak wojciech.sobczak at cadc.pl
Mon Nov 28 20:07:18 CET 2005


> Basic question : I want to know if it's possible to build an Openswan
> VPN tunnel between two distant sites (two local networks of the same
> company), the first site operating with a Checkpoint NG-2 (under
> Nokia) and the other one with Openswan, Ipsec-tools, Linux Debian
> Sarge ?    
> What should be the Ipsec.conf and the iptablesRules ?
> Thanks in advance for your help.

#/etc/ipsec/ipsec.conf
version 2.0
config setup
interfaces="ipsec0=eth1 ipsec1=eth0"
uniqueids=no
conn ipsecc
type=tunnel
left=linuxip
leftsubnet=net_behind_linux
right=checkpointNGip
rightsubnet=net_behind_checkpoint
keyexchange=ike
pfs=yes
esp=3des-sha-modp1536
ike=3des
auto=add
auth=esp
authby=secret


#/etc/ipsec/ipsec.secrets
linuxip heckpointNGip: PSK "very_secure_password"

Best Regards
Sobczak Wojciech

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20051128/d809b5fc/attachment.htm


More information about the Users mailing list