[Openswan Users] Replace RRAS With Openswan
Serge Fonville
serge.fonville at gmail.com
Fri Feb 8 08:06:30 EST 2008
Hi,
Currently I am running an RRAS server to connect to my subnet.
I would like to replace RRAS with Openswan
I read about left and right sites, so I will use those too
- The left side has the servers(192.168.1.0/24)
- The right side has the vpn client(unkonw IP, likely private)
- Both sites are behind nat
- The VPN client should get an IP address from the DHCP server at the left
site
- I to need login with a local user off the Openswan server
- The openswan server has one network card (192.168.1.1)
- The Openswan Server runs on Centos 5.0
- All clients run Windows XP
- No keys or certificates should need to be loaded beforehand on the client,
basically everyone with an account should be able to connect to the VPN
What I would like to know:
- What should my /etc/ipsec.conf and /etc/ipsec.d/* files look like
- What extra configurations steps are there (i.e. generating keys and
forwaring ports)
I read all the documentation I could find on the internet and have learned a
lot about openswan and IPSEC in general, but noting has been really useful
Thanks a great lot in advance
Serge Fonville
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20080208/5771e336/attachment.html
More information about the Users
mailing list