Discussion on:
View:
Show:
Are we talking about OpenVPN or OpenSwan here - they are 2 different things ...
And I knew what you *meant* to say. Just pointing out a needed edit in a rather roundabout fashion 
Great article, btw. I intend to try it out this evening.
Great article, btw. I intend to try it out this evening.
also,
rpm -qa|grepppp
should be
rpm -qa|grep ppp
this article needs an edit. it was geared toward a non-savvy user implementing it, so anything that can eliminate confusion would be good.
rpm -qa|grepppp
should be
rpm -qa|grep ppp
this article needs an edit. it was geared toward a non-savvy user implementing it, so anything that can eliminate confusion would be good.
IPSEC is really providing the security. CHAP and the psk are being required by the MS VPN client which uses l2tp. Alternatively, you can use x.509 certificates for authentication. See Nate Carlson's and Jacco de Leeuw's excellent web sites for more detail on setting this up. It took me a while to get it working but it works great now. BTW, I think the package for l2tp is now xl2tpd using yum.
Dear all,
I am trying with the guide on RHEL4 x386, but i don't know how to download other packages except openswan that i downloaded and installed well on this linux box. If you have a binary package or any ways to help me overcome this. It could be appreciated highly
Thanks,
Bryan De
I am trying with the guide on RHEL4 x386, but i don't know how to download other packages except openswan that i downloaded and installed well on this linux box. If you have a binary package or any ways to help me overcome this. It could be appreciated highly
Thanks,
Bryan De
After installing openswan-2.6.31. I spent many hours trying to resolve the error below when attempting to establish an IPSec tunnel, I found that installing openswan-2.6.30 fixed this error.
Error "030 messge from whack contains bad string"
Below find the steps used to setup openswan on centos 5.5
# wget http://www.openswan.org/download/openswan-2.6.30.tar.gz
tar -xzf openswan-2.6.30.tar.gz
# cd openswan-2.6.30
# make programs
# make install
KLIPS install for 2.0, 2.2, 2.4 or 2.6 kernels (2.6.18-194.3.1.el5-x86_64)
# export KERNELSRC=/usr/src/kernels/2.6.18-194.3.1.el5-x86_64/
# make module
# make module_install
# depmod -a
# modprobe ipsec
# service ipsec start
# chkconfig ipsec on
# ipsec verify
Other errors/fixes
NETKEY detected, testing for disabled ICMP send_redirects [FAILED]
Please disable /proc/sys/net/ipv4/conf/*/send_redirects
or NETKEY will cause the sending of bogus ICMP redirects!
Run
# sudo sysctl -a | grep 'ipv4.conf.*redirect'
should list the variables you need to set. (Note: set them all to 0). in /etc/sysctl.conf
Copy the errors onto /etc/sysctl.conf and set all variables to 0
# vi /etc/sysctl.conf
To process changes
# sysctl -p
# ipsec restart
Error "030 messge from whack contains bad string"
Below find the steps used to setup openswan on centos 5.5
# wget http://www.openswan.org/download/openswan-2.6.30.tar.gz
tar -xzf openswan-2.6.30.tar.gz
# cd openswan-2.6.30
# make programs
# make install
KLIPS install for 2.0, 2.2, 2.4 or 2.6 kernels (2.6.18-194.3.1.el5-x86_64)
# export KERNELSRC=/usr/src/kernels/2.6.18-194.3.1.el5-x86_64/
# make module
# make module_install
# depmod -a
# modprobe ipsec
# service ipsec start
# chkconfig ipsec on
# ipsec verify
Other errors/fixes
NETKEY detected, testing for disabled ICMP send_redirects [FAILED]
Please disable /proc/sys/net/ipv4/conf/*/send_redirects
or NETKEY will cause the sending of bogus ICMP redirects!
Run
# sudo sysctl -a | grep 'ipv4.conf.*redirect'
should list the variables you need to set. (Note: set them all to 0). in /etc/sysctl.conf
Copy the errors onto /etc/sysctl.conf and set all variables to 0
# vi /etc/sysctl.conf
To process changes
# sysctl -p
# ipsec restart
Plz let me know which Linux OS you are using and kernel version for openswan-2.6.30 and also L2tpd version.And is patching of L2tpd required.
Want to use Ipsec VPN with PSK with Help of Openswan on Fedora core 5.Please suggest.Getting error no 792 while connecting.
For providing a VPN solution between IOS devices and linux based VPN servers. I have been struggling with this challenge for awhile. These configs worked for me after making the obvious changes. Thanks again !
- Keyboard Shortcuts:
- Prev
- Next
- Toggle
