[Openswan Users] IpSec Connections
Patrick Ford
fenderdood at gmail.com
Wed Jan 17 12:33:07 EST 2007
Brian and Andy,
Yes that is correct (as far as I remember) if you are using kernel-2.6 IPSec
(or redhat-EL 2.4 with crypto-API added) There is no specific IPSec device.
Andy,
If you are trying to verify that the traffic between those networks is
indeed encrypted, you can sniff the traffic between both gateways, You
should not see between the networks only between the gateways.
I would recommend recompiling your openswan from source if that option is
available to you. If you are using a redhat distribution kernel there are a
few tweaks you may have to do to get klips to compile, but the ipsec
interfaces are worth it just for the ability to netfilter on on the
interface.
Best regards
Patrick Ford
--
"Education is what remains after one has forgotten what one has learned in
school."
Albert Einstein
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20070117/c23471bf/attachment.html
More information about the Users
mailing list