[Openswan Users] Need a VDSL2 modem known to work with Openswan

Durwin thecajun at nmia.com
Sat Feb 23 17:53:20 EST 2013


> Hi Durwin,
> 
> You don't want "ipsec passthrough" in most cases. As I said in my previous postings, just like SIP ALG, it is usually completely broken and if you can't disable it, you are quite often screwed. The Zyxels are pretty good  - isn't there a newer device in their portfolio that might suit? Netgear is also reasonable if you get the right model. I've heard some good comments about Billion but I've never used one myself. Also look at some of the more expensive routers that specialise in VoIP or security - just google for "Secure Router", "Security Router", etc. Many of them in fact have IPSEC built in, I got this:

So a modem that does not support ipsec pass through will still work with
openswan?  If so, why do they bother supporting pass through?  Without
pass through is it required to forward ports?

> http://www.scan.co.uk/products/zyxel-prestige-2602hwl-d1a-x20-vpn-11g-plus125mbps-wireless-4x10-100-x2-voip-adsl-router?utm_source=google+shopping&utm_medium=google+shopping

The new connection Centurylink has me on requires VDSL2.  I tried
connecting using ADSL2 and I did connect to internet, but it did not
connect to centurylink.  I don't know how that would reflect on my
speeds.
> 
> to work with openSWAN with PSKs at least, in both 3DES and AES.
> 
> Sometimes if you're using DSL or Cable and facing these issues it's actually easier to get a modem instead and use your linux/bsd box to do everything.
If you mean a modem to *just* connect to service provider and do VPN
with openswan, that is what I am looking for.  But I must not be reading
you right.  I require VDLS2 to connect correctly.  After that I don't
require any thing special.  Just Openswan.  I expect my current
configuration which worked before will work again if I can find that
special modem.

I will search some more, esspcially the Zyxel.  I have seen the Billion
in my searches so its good to hear positive feedback on them.

Thank you,

Durwin
> 
> Cheers
> 
> Alex
> 
> 
> 
> On 23/02/13 17:05, Durwin wrote:
> > I had a successfully working Openswan VPN using a qwest zyxel q100.
> > After an 'upgrade' to Actiontec C1000A, my vpn stopped working.  It
> > establishes a tunnel but no traffic passes through.  Manual on the Actiontec C1000A
> > 'says' it has ipsec passthrough, but after a lot of troubleshooting I've
> > been unable to get traffic through.
> >
> > So my question is, is any one using a VDLS2 modem with PPPoE and
> > Openswan successfully?
> >
> > Thank you,
> >
> > Durwin
> > _______________________________________________
> > Users at lists.openswan.org
> > https://lists.openswan.org/mailman/listinfo/users
> > Micropayments: https://flattr.com/thing/38387/IPsec-for-Linux-made-easy
> > Building and Integrating Virtual Private Networks with Openswan:
> > http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
> >
> 
> _______________________________________________
> Users at lists.openswan.org
> https://lists.openswan.org/mailman/listinfo/users
> Micropayments: https://flattr.com/thing/38387/IPsec-for-Linux-made-easy
> Building and Integrating Virtual Private Networks with Openswan:
> http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155

Durwin F. De La Rue <thecajun at nmia.com>
-- 
reality.sys corrupted. universe halted. reboot (y/n)?



More information about the Users mailing list