[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: VPN W2K client

To: misc_(_at_)_openbsd_(_dot_)_org
Subject: Re: VPN W2K client
From: Christopher Biggs <chris_(_at_)_stallion_(_dot_)_oz_(_dot_)_au>
Date: Thu, 14 Feb 2002 11:41:23 +1000

"dreamwvr_(_at_)_dreamwvr_(_dot_)_com" <dreamwvr_(_at_)_dreamwvr_(_dot_)_com> moved upon the face of the 'Net and spake thusly:

> hi,
>   Just parsed this from another list which might be helpful
> for those wanting to do host to host IPSEC via OpenBSD.
> You might want to look at SSH Sentinel as it interoperates
> with FreeSWAN and so 'should_work" with IPSEC on OpenBSD.

It works, I tested it some months ago.

Unless you have absolute bleeding edge current isakmpd, you need to
configure Sentinel to use "legacy proposal" (3des only) because
otherwise it sends a huge ass proposal which confuses isakmpd.

--cjb

-- 
Christopher Biggs -- chris_(_at_)_stallion_(_dot_)_oz_(_dot_)_au -- Stallion Technologies Australia.
There's a bug in my mailer that mangles my sig but V guvax V'ir svkrq vg abj.
Uneqyl jbegu qrpbqvat, jnf vg? Rznvy zr "Fhowrpg: fraqctcxrl" sbe zl CTC xrl.

References:
- VPN W2K client
  - From: dreamwvr_(_at_)_dreamwvr_(_dot_)_com

Prev by Date: Re: OpenCA, PKI
Next by Date: Re: OpenCA, PKI
Previous by thread: VPN W2K client
Next by thread: Re: VPN W2K client
Index(es):
- Date
- Thread

Visit your host, monkey.org