LinuxQuestions.org
Register a domain and help support LQ
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Red Hat
User Name
Password
Red Hat This forum is for the discussion of Red Hat Linux.

Notices

Reply
 
Search this Thread
Old 02-08-2004, 02:40 AM   #1
brollie
LQ Newbie
 
Registered: Feb 2004
Posts: 3

Rep: Reputation: 0
Question IPsec configuration under RHEL 3.0


Dear Linux Gurus,
I have recently set up RHEL 3.0 at my office with the intention to configure an IPsec VPN connection from home.
Using the included ipsec package, I have successfully configured a host-2-host connection without any problems, so I know the technology works.
What I really need to do is to configure a "Road Warrior" set up so that I can access the systems behind the office firewall for CIFS connections and e-mail.
Having checked all available documentation from Red Hat, I can only find information for Host-2-Host and Network-2-Network configuration. So far I have been unable to get a Network-2-Network configuration to work.
Now here's the twist... despite having purchased a support contract for RHEL 3.0 from Red Hat, I cannot get help for this issue because VPN is not included in the standard RHEL 3.0 support contract. I have been given an estimate to cover 12 months of support for VPN by Red Hat, but I think 70,000 Euros is just a little outside my budget!
So, does anyone know how to configure a "Road Warrior" configuration with the standard RHEL 3.0 ipsec package?
Thanks in advance,
BrOllie.
 
Old 02-03-2006, 07:19 PM   #2
rafiqul
Member
 
Registered: Jan 2005
Location: Chicago
Distribution: Fedora Core 4
Posts: 46

Rep: Reputation: 15
Can you please give me the instruction how you did IPSec configuration for host to host ?
 
Old 02-03-2006, 09:01 PM   #3
rafiqul
Member
 
Registered: Jan 2005
Location: Chicago
Distribution: Fedora Core 4
Posts: 46

Rep: Reputation: 15
I am struggling to make host to host working on fedora linux. I need to make it work on RedHat (Cent OS 4.2), and Solaris (host to host), but currently I have access to two fedora machines, I am trying to set it up in fedora, as test..but looks like I am no where.

Here is what I did..

- installed ipsec-tools
yum install ipsec-tools
- created file /etc/sysconfig/network-scripts/ifcfg-ipsec0 in Machine A (in Machine B also), and edited as follows :
DST=Machine B's IP (Machine A's IP)
TYPE=IPSEC
ONBOOT=yes
IKE_METHOD=PSK

- crated file /etc/sysconfig/network-scripts/keys-ipsec0 in Machine A (Machine B also), and edited as follows :
IKE_PSK = foobarbaz

the above preshared key is same for both machines.


- chmod 600 /etc/sysconfig/network-scripts/kys-ipsec0

Question
A. Whenever I do /sbin/ifup ipsec0, I loose connectivity between Machine A, and B. Dont know whats going on.
B. I would like to install the ipsec-tool , and configure for host to host (Cent OS 4.2, and Sun Solaris). I tried to use "yum install ipsec-tools", looks like it tried to get files from the web - and failed, perhaps the machine does not have internet connection. But the real question is yum works on this OS ? This is actually similar OS as RedHAT (I only came to know about this OS when I used "cat /etc/redhat-release", it returned me Cent OS 4.2 (Final). Any thought on Solair ?

Please help...
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Upgrade RHEL 3 AS to RHEL 4 AS louisb Linux - Enterprise 8 06-04-2009 02:57 PM
ipsec tool for RHEL 4 Desktop deverej Linux - Software 1 06-13-2005 10:54 AM
SAN Tape Robot/Library Configuration for RHEL AS 3.0 MensaWater Linux - Hardware 1 06-07-2005 07:34 PM
SAN Tape Robot/Library Configuration for RHEL AS 3.0 MensaWater Linux - Enterprise 0 06-02-2005 09:45 AM
ipsec pk21 Linux - Software 2 01-30-2003 06:39 AM


All times are GMT -5. The time now is 11:58 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration