RE: Setting Up a IPSec server on my redhat 7.3

Tue, 11 Jun 2002 05:38:50 -0700 

www.freeswan.org - it has directions.  Also jixen.tripod.com - it has good
examples.

What I can tell you is that I have never used the rpm - I always build it
into a source kernel and it has never given me any trouble after the first
successful attempt.  The last box I built with ipsec was 7.3 and freeswan
1.97 and shorewall firewall using ip to equalize 2 gateways.  www.ssh.com
has freeswan specific sentinel configurations that answer all the questions.

The only place where you might run into problems is the kernel build.  Well,
here are the instructions in a nutshell after installing
kernel-sourcexxx.rpm :

1. link /usr/src/linux to /usr/src/linux-2.4
2. untar freeswan 1.9x into /usr/src/
3. cd /usr/src/linux
4. make mrproper
5. cp -p configs/kernel_you_use.config .config
6. make oldconfig
7. make menuconfig
        - customize options - or leave alone if you don't know what you are doing
8. make dep bzImage 2>errors
9. cd ../freeswanxxx
10. make oldgo
11. make kinstall
12. edit lilo or grub to find new kernel and stuff
13. possibly mkinitrd /boot/vmlinuz-<version>.img <version>
14. reboot and uname -a to see version
15. ipsec whack --status
16. vi ipsec.conf and ipsec.secrets
17 test

Obviously you need to setup the firewall which is another story.  HINT -
allow PROTOCOL 50 and 51 and PORT 500 UDP.

Good luck and understand what you are doing before you start.

Best regards,

Andrew Judge
Grove Networks Inc.
www.grovenetworksinc.com <http://www.grovenetworksinc.com>

-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On
Behalf Of Brian
Sent: Tuesday, June 11, 2002 9:26 AM
To: [EMAIL PROTECTED]
Subject: Setting Up a IPSec server on my redhat 7.3


I would like to setup an IPSec connection to my desktops, I did find many
good websites and how to setup a VPN using FreeBSD, but it’s to confusing.
All I need is just enough steps to configure my redhat box 7.3 as a VPN
Server, for IPSec.. I am going to be using SSH Sentinel
As my windows client.. Is there a better website out there?

Brian




_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list

Reply via email to