Re: OpenBSD 4.7 as VPN Gateway for Road Warriors, Preferred Configuration

Hi, Transport mode IPSec has many legit uses. The first one which springs to mind is gateway-gateway encryption, over which you can use your favourite tunneling protocol e.g. L2TP or GRE. Especially useful if you're transporting multicast traffic over the VPN. Also one of the most popular remote

Re: OpenBSD 4.7 as VPN Gateway for Road Warriors, Preferred Configuration

Hi, On Sun, 23.05.2010 at 11:41:27 +0200, Martin PelikC!n wrote: > It really depends on what you need - most road warriors are okay with > transport mode (where obviously DHCP doesn't make any sense). If I'd say that transport mode is a design error in IPSEC and should be avoided at all costs.

Re: OpenBSD 4.7 as VPN Gateway for Road Warriors, Preferred Configuration

2010/5/22, dontek : > Yes, thanks, I've read the man pages. I've even made the proposed > connection > work both ways. (less the DHCP working) What I was hoping for was a few > that > have more experience than I do to share their experiences and tell me some > of > the potential benefits and/or d

Re: OpenBSD 4.7 as VPN Gateway for Road Warriors, Preferred Configuration

-Original Message- From: Wouter Slegers [mailto:wou...@yourcreativesolutions.nl] Sent: Saturday, May 22, 2010 5:23 AM To: dontek Subject: Re: OpenBSD 4.7 as VPN Gateway for Road Warriors, Preferred Configuration >> In my situation with multiple Road Warriors, is one way more correc

Re: OpenBSD 4.7 as VPN Gateway for Road Warriors, Preferred Configuration

-Original Message- From: Martin PelikC!n [mailto:martin.peli...@gmail.com] Sent: Friday, May 21, 2010 8:19 AM To: dontek Cc: Misc OpenBSD Subject: Re: OpenBSD 4.7 as VPN Gateway for Road Warriors, Preferred Configuration > Hi > did you actually read any piece of documentation abo

Re: OpenBSD 4.7 as VPN Gateway for Road Warriors, Preferred Configuration

2010/5/21 Martin Pelikan : >> What's the preferred method in the day of OpenBSD 4.7? > > To search before typing? +1

Re: OpenBSD 4.7 as VPN Gateway for Road Warriors, Preferred Configuration

Hi did you actually read any piece of documentation about the topic? Manual pages like ipsec(4) for overview, ipsec.conf(5) for configuration and isakmpd(8) + keynote(3,4,5) + openssl(1) + authpf(8) for possible ways of authenticating your warriors. > I've found many examples via Google. Some are

OpenBSD 4.7 as VPN Gateway for Road Warriors, Preferred Configuration

Hey guys: I'm looking for a little direction here, as the preferred method of setting up a VPN for these types of connections seems to have changed many times throughout the version history of OpenBSD and changes to IPSec, isakmpd, pf, etc.. So as you've probably gleaned from the subject, I