[Openswan Users] Linux Client and routing
Paul Wouters
paul at xelerance.com
Thu Jan 11 16:12:45 EST 2007
On Fri, 5 Jan 2007, Alexandre Ghisoli wrote:
> I've few OpenSWAN VPN gateways with dual network interfaces (one is
> Internet, one is internal) running linux 2.6.19, NETKEY.
>
> I've setup L2TP / IPSec for roadwarriors, using X.509 certificates for
> security and then username / password for the L2TP.
> This works well for Windows users, they get internal IP adresses.
>
> Now come the Linux Roadwarriors .. and this cause more troubles.
> I was investingating the L2TP way also, but seems too complicated for
> clients with low knowledge.
There are configuration examples in openswan-2.x.y/testing/pluto/l2tp*
> Oh, also I'll add MacOS clients very soon too, the solution must be on
> gateway side, since I'm not familar with MacOS setups.
OSX works fine, as long as your gateway's X.509 certificate has either
its DNS name as used in the OSX client config, or its IP address as
subjectAltName.
Paul
--
Building and integrating Virtual Private Networks with Openswan:
http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
More information about the Users
mailing list