[Openswan Users] Basic Openswan question

Paul Wouters paul at xelerance.com
Wed Nov 29 19:51:53 EST 2006


On Tue, 28 Nov 2006, Ladi wrote:

> I'm new to IPSec and it's true, i'm a bit confused. I know that IPSec operates on two modes, tunnel and transport mode.
>
> I managed to secure the connection to the terminal server in WinXP -> Win 2k3 server and i didn't have to specify a VPN. In the win2k3 server machine i configure the IPSec policy to receive only IPSec traffic (using certificates) on the TCP port 3389 (for terminal server) for all the connections. And from the client side (Win XP) i specify to use IPSec with certificate for all the traffic going out to TCP 3389. In this way someone can connect to the terminal server from any place and still can connect as far as (s)he has the right certificates. To be honest with you i don't know which mode this is (sorry for my ignorance).

If it is ipsec, it is a transport mode or tunnel mode ipsec connection. Sniff between the machines and see what you find.
I'm pretty sure it will not be port 3389 if it is using ipsec policies.

Paul


More information about the Users mailing list