[Openswan Users] Openswan & TFTP
Paul Wouters
paul at xelerance.com
Fri Nov 14 10:28:39 EST 2008
On Fri, 14 Nov 2008, Julien Bonjean wrote:
> Sorry if I wasn't clear. Openswan is already running on server because some
> clients may have already established a VPN with it. The problem is when
> another client wants to establish a connection or if a client reboot. For
> some security reasons we don't want to store ipsec.secrets and ipsec.conf in
> client initrd so it must retrieve them by tftp but server doesn't accept
> unencrypted connection as Openswan is already running (for other clients) ...
> I currently use a second unencrypted connection to retrieve files but I would
> like to avoid this.
The running openswan should not be blocking new connection. Is there ip re-use
without clearing out the previous ipsec tunnels?
Paul
More information about the Users
mailing list