Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game. |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
|
08-16-2011, 08:49 AM
|
#1
|
Member
Registered: Dec 2006
Location: London, UK
Distribution: Centos, Fedora
Posts: 53
Rep:
|
best way for linux to connect to ipsec VPN?
I need to connect to an IPSEC VPN from my centos 5 server. What would be the easiest way to accomplish this?
I have done a little research, and linux with IPSEC mostly turns out openswan. Is this any good? I found lots of guides to setup an IPSEC server openswan, but not that many on how to use it as client to connect to remote IPSEC server
I am not that familiar with IPSEC VPN, so if you need more information, the details of the VPN server i am trying to connect to is as follows:
Authentication Method Pre Shared Key
Encryption Scheme IKE
Diffie-Hellman Group DH Group 2
Encryption Algorithm 3DES
Hashing Algorithm SHA
Main or Aggressive Mode Main Mode
Lifetime (for renegotiation) 2800 seconds
Encryption Algorithm 3DES
Integrity (Hash) SHA-1
Oakley Group DH Group 2
Perfect Forward Secrecy No PFS
Lifetime (for renegotiation) 3600 seconds
Life-size in KB (for renegotiation) Not used
|
|
|
08-17-2011, 10:50 AM
|
#2
|
Member
Registered: Dec 2006
Location: London, UK
Distribution: Centos, Fedora
Posts: 53
Original Poster
Rep:
|
OK, i tried to use VPNC. but still not getting anywhere. leow is my output
[root@test1 vpnc]# vpnc --debug 1
Enter IPSec gateway address: 212.10.21.214
Enter IPSec ID for 212.10.21.214: telecoms
Enter IPSec secret for jersey@212.9.21.214:
Enter username for 212.10.21.214:
Enter password for @212.10.21.214:
vpnc version 0.5.3
IKE SA selected psk-3des-sha1
NAT status: this end behind NAT? YES -- remote end behind NAT? no
received notice of type (ISAKMP_N_R_U_THERE)(36136), giving up
---!!!!!!!!! entering phase2_fatal !!!!!!!!!---
vpnc: configuration response rejected: (ISAKMP_N_INVALID_MESSAGE_ID)(9)
Last edited by saiyen2002; 08-19-2011 at 05:42 AM.
|
|
|
08-19-2011, 05:45 AM
|
#3
|
Member
Registered: Dec 2006
Location: London, UK
Distribution: Centos, Fedora
Posts: 53
Original Poster
Rep:
|
OK. The VPN that i am connecting is not working due to the follwing reason given by the VPN provider
".......This is achieved by point to point VNPs, which is what we require to set up here.
The VPN client that you wish to use is designed for remote access applications rather than a point to point application that is required here set-up on your firewall "
Guess I needd a point-to-point ipsec VPN for centos.
Any ideas anyone
|
|
|
All times are GMT -5. The time now is 09:08 PM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|