[Openswan Users] host-to-gateway encryption
Adam Zientek
adam.zientek at hot.pl
Mon Aug 28 13:49:59 EDT 2006
Hi!
I try to configure ipsec in WLAN. WLAN clients have only intrenet
connection via gateway - nothing more. I want to encrypt everything what
is on air.
Clients: 192.168.111.1-100, gateway 192.168.111.254. Now i have:
version 2.0
config setup
nat_traversal=no
virtual_private=%v4:192.168.111.0/24,%v4:192.168.0.0/24,%v4:192.168.123.0/24
include /etc/ipsec.d/no_oe.conf
conn local-x509
left=192.168.111.254
leftsubnet=192.168.111.0/24
leftcert=/etc/ipsec.d/certs/ipsecgwCert.pem
right=%any
rightrsasigkey=%cert
rightsubnet=vhost:%no,%pr
auto=add
rekey=no
This configuration encrypt direct traffic to gateway(e.g. ftp on
gateway), but no internet traffic. Clients use Linsys ipsectool on
windows. What should i change to encrypt all traffic between host and
gateway?
--
Adam Zientek
More information about the Users
mailing list