[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: IPsec access control.

To: misc@openbsd.org
Subject: Re: IPsec access control.
From: John Kerbawy <john@maKintosh.com>
Date: Mon, 22 Jan 2001 15:28:55 -0600
Content-Disposition: inline
References: <20010119094512.L13982@maKintosh.com>
User-Agent: Mutt/1.2.4i

On Fri, Jan 19, 2001 at 09:45:12AM -0600, John Kerbawy wrote:
> Hello.
> 
> I've been playing around with IPsec using OpenBSD 2.8 and NAI's PGP
> Desktop (PGPNet) client. I've successfully created an IPsec connection
> between PGPNet and OpenBSD, and I've even gotten PGPnet to talk to a
> private, non-routable network that's behind the OpenBSD box.
> 
> My problem is this: How can I limit the access of VPN users?

A handful of people asked me for my config files that I used to get this
far.

They can be found at: http://www.makintosh.com/~john/OpenBSD/

As far as the answer to my problem, Angelos D. Keromytis suggested that
I read about "local_filter" in isakmpd.policy(5).

__ 
John Kerbawy <john@maKintosh.com>

References:
- IPsec access control.
  - From: John Kerbawy <john@maKintosh.com>

Prev by Date: Re: Problems compiling Ip filter 3.4.16 on 2.8
Next by Date: OpenSSH issues with Solaris 7/8 [LONG!!]
Prev by thread: IPsec access control.
Next by thread: Honeypots
Index(es):
- Date
- Thread