Hey guys, I'm trying to set up IPsec to connect a single IKE tunnel configuration(phase one and phase 2) to connect to many windows clients.
So far I've found very little information of the specifics of accomplishing this in a windows-unix environment. My AIX servers are application servers that send their application out via telnet. My objective is to make the connections fairly transparent to the end users, they will still think they are using telnet but it will all be encrypted across the network.
i've set up several end to end ike tunnels in transport mode to my windows systems and i've found the following documentation from ibm
"Using IKE with DHCP or dynamically assigned addresses"
but i've found it really lacking in specifics. How exactly do i use a FQDN to specify a range of addresses? I know windows doesn't support aggressive mode checking, so main (oakley mode) is really my only option. I just need to see some configuration examples visually and IBM isn't so hot on screen shots. If anyone could show me examples of these configurations, such as using a certificate or a redbook that has screen shots It would mean a whole lot. As it is i just get even more confused by reading the documentation.