[Openswan Users]

[Agent Smith]

no I mean I used racoon (that came with OSX) with L2TP
GUI, eveytime I start the GUI, it starts the racoon
process for me and according to racoon configuration,
it authenticates me to do L2TP/IPSEC, the GUI options
for auth. doesn't matter, it can be certificate or PSK
with a bogas psk (i'll have the user type in his
password for this) and it will still work.


--- Jacco de Leeuw <jacco2 at dds.nl> wrote:

> Agent Smith wrote:
> 
> > solved using racoon alongside with L2TP on OSX.
> Now it
> > authenticates OSX from behind NAT-T and with a
> real IP
> > as well. I'll post the racoon.conf if anyone is
> > interested. 
> 
> What do you mean: you replaced Apple's hacked racoon
> by racoon proper,
> or you replaced Openswan with racoon on the Linux
> side?
> 
> > the problem here is that we MUST authenticate
> everyone
> > using certificates (PSKs won't do since we have a
> > large no. of users and I don't want to give out
> same
> > PSK for eveyone)
> 
> That's not the problem, that's common sense. The
> problem is that it is
> not clear how to use certificates on OS X with the
> GUI.
> 
> Jacco
> -- 
> Jacco de Leeuw                        
> mailto:jacco2 at dds.nl
> Zaandam, The Netherlands          
> http://www.jacco2.dds.nl
>                      Mosquitos suck
> _______________________________________________
> Users mailing list
> Users at openswan.org
> http://lists.openswan.org/mailman/listinfo/users
> 



		
__________________________________ 
Yahoo! Music Unlimited 
Access over 1 million songs. Try it free.
http://music.yahoo.com/unlimited/