[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: VPN W2K client
- To: misc_(_at_)_openbsd_(_dot_)_org
- Subject: Re: VPN W2K client
- From: Christopher Biggs <chris_(_at_)_stallion_(_dot_)_oz_(_dot_)_au>
- Date: Thu, 14 Feb 2002 11:41:23 +1000
"dreamwvr_(_at_)_dreamwvr_(_dot_)_com" <dreamwvr_(_at_)_dreamwvr_(_dot_)_com> moved upon the face of the 'Net and spake thusly:
> Just parsed this from another list which might be helpful
> for those wanting to do host to host IPSEC via OpenBSD.
> You might want to look at SSH Sentinel as it interoperates
> with FreeSWAN and so 'should_work" with IPSEC on OpenBSD.
It works, I tested it some months ago.
Unless you have absolute bleeding edge current isakmpd, you need to
configure Sentinel to use "legacy proposal" (3des only) because
otherwise it sends a huge ass proposal which confuses isakmpd.
Christopher Biggs -- chris_(_at_)_stallion_(_dot_)_oz_(_dot_)_au -- Stallion Technologies Australia.
There's a bug in my mailer that mangles my sig but V guvax V'ir svkrq vg abj.
Uneqyl jbegu qrpbqvat, jnf vg? Rznvy zr "Fhowrpg: fraqctcxrl" sbe zl CTC xrl.
Visit your host, monkey.org