Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here. |
| Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
 |
GNU/Linux Basic Guide
This 255-page guide will provide you with the keys to understand the philosophy of free software, teach you how to use and handle it, and give you the tools required to move easily in the world of GNU/Linux. Many users and administrators will be taking their first steps with this GNU/Linux Basic guide and it will show you how to approach and solve the problems you encounter.
Click Here to receive this Complete Guide absolutely free. |
Due to network maintenance being performed by our provider, LQ will be down starting at 05:01 AM UTC. The exact duration of the downtime isn't currently known. We apologize for the inconvenience.
|
 |
08-06-2003, 01:27 AM
|
#1
|
|
LQ Newbie
Registered: Jul 2003
Location: pakistan
Distribution: redhat 9
Posts: 10
Rep: 
|
ipsec??
Hi All!
I m having problem with my redhat 9.0
I need to test few things using ipsec.
But
I really want to know few things first.
1) How can i check if ipsec is "installed" on my system.
2) If its not "installed" How can i do it. I did check on freeS/WAN and all i got was to recompile the kernel things .is that wat i have to do ?
any help from u guys
TIA
waiting for answer
|
|
|
|
|
08-06-2003, 04:04 AM
|
#2
|
|
Member
Registered: Aug 2003
Location: /dev/null
Posts: 40
Rep: 
|
IIRC, you should see ipsec0 (tunnel) when you type #ifconfig.
IPSec usually located at /usr/lib/ipsec.
If you don't have support for ipsec, you would have to recompile the kernel and install FreeSWan
|
|
|
|
|
08-06-2003, 06:03 AM
|
#3
|
|
LQ Newbie
Registered: Jul 2003
Location: pakistan
Distribution: redhat 9
Posts: 10
Original Poster
Rep:
|
thanx sir, I downloaded and installed the freeS/Wan package and now my ipsec services are enabled.
but i wonder if i could use kame instead of free S/WAN coz it looks pretty easy to manage than free S/WAN.
but i only see kame for openbsd freebsd netbsd etc etc .
any clues.
|
|
|
|
|
08-06-2003, 06:09 AM
|
#4
|
|
Member
Registered: Aug 2003
Location: /dev/null
Posts: 40
Rep:
|
as stated on kame project web site:
...to provide a free IPv6 and IPsec (for both IPv4 and IPv6) stack for BSD variants to the world
It means that you can't use kame on RH 9.
Read the online manual for FreeSWan configuration
http://www.freeswan.org/doc.html
you might find useful information at http://www.ipsec-howto.org
Last edited by cIx; 08-06-2003 at 06:13 AM.
|
|
|
|
|
08-07-2003, 05:52 AM
|
#5
|
|
LQ Newbie
Registered: Jul 2003
Location: pakistan
Distribution: redhat 9
Posts: 10
Original Poster
Rep:
|
Hi again
I again ran into some trouble with swan
I downloaded the rpm and did some rpm -i etc
the swan is installed and i created some sample connections.
and they did not seem to work
and when i did ipsec whack --listen
it shows me the following message
002 listening for IKE messages
002 forgetting secrets
002 loading secrets from "/etc/ipsec.secrets"
003 "/etc/ipsec.secrets" line 3: syntax error in IPv6 numeric address "192.168.0.26:PSK"
i dono from where this IPv6 has dropped in (i know it must be one of my mistakes)
Following are the rpms that i intalled
freeswan-module-1.99_x509_0.9.15_2.4.20_8-0.i386.rpm
freeswan-1.99_x509_0.9.15_2.4.20_8-0.i386.rpm
any ideas pros??
TIA
desperately waiting for a reply
|
|
|
|
|
08-18-2003, 11:37 PM
|
#6
|
|
Member
Registered: Aug 2002
Posts: 189
Rep:
|
Have you got it fixed yet? I think /etc/ipsec.secrets contains your RSA signature. Maybe you can try recreating the ipsec.secrets file. There should be docs on how to do that. I have not had problems with this but I have moved on to using .x509 certificates for authentication in order to interoperate with windows xp. It is not that complicated and /etc/ipsec.secrets will contain just a single line indicating the file name of your certificate.
|
|
|
|
| Thread Tools |
Search this Thread |
|
|
|
Posting Rules
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
HTML code is Off
|
|
|
Similar Threads
|
| Thread |
Thread Starter |
Forum |
Replies |
Last Post |
|
Nat ipsec
|
Datacenter1 |
Linux - Networking |
0 |
08-25-2005 09:43 AM |
|
IPSec
|
eagle683 |
Linux - Security |
5 |
06-10-2005 10:53 AM |
|
IPsec
|
cranium2004 |
Linux - Security |
5 |
05-01-2005 08:21 PM |
|
Ipsec
|
MarleyGPN |
Linux - Networking |
1 |
07-15-2003 08:18 AM |
|
ipsec
|
pk21 |
Linux - Software |
2 |
01-30-2003 06:39 AM |
All times are GMT -5. The time now is 11:50 PM.
|
|
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
|
 Latest Threads
LQ News
|
|
