I'm looking for someone who can give me a little guidance with the this ipsec implementation on RH-8. (i'm familiar with IP VPN Terminology)
i have some unresolve issue which i will be very grateful for any help:
my desire configuration should be:
I want to deploy secure IP VPN connections between several Linux
machines (all RH-8 with the same configuration including installed
freeswan 2.04 package), The VPN Details should be IKE with pre shared
secret (not RSA) for SA (ipsec_pluto will do this as well as I understand)
and DES-128bit with SHA1 for encryption.
My Problems are:
1) Which freeswan configuration method I need to use to accomplish the
Design above? (road-warrior or ....?)
2) How can i configure the freeswan to use pre shared secret instead of
the RSA key (what should i put in the ipsec.conf/ipsec.secret files)?
3) How can I configure the freeswan to NOT use the dns as it RSA key
repository? (I'm really can't understand why they are relaying on DNS
4) In the ipsec.conf when mentioning "left*=" "right*=", what is the logic
behind left and right?
Those questions will help to clarify a lot of frees/wan issue.