Zero to IPSec in 4 minutes

Zero to IPSec in 4 minutes
Dragos Ruiu

This short article looks at how to get a fully functional IPSec VPN up and running between two fresh OpenBSD installations in about four minutes flat.

Expand all | Post comment

Zero to IPSec in 4 minutes 2006-03-01
Ron W. Szpak (1 replies)

Re: Zero to IPSec in 4 minutes 2007-02-24
Reza A.

Zero to IPSec in 4 minutes 2006-03-01
Anonymous

Zero to IPSec in 4 minutes 2006-03-01
Anonymous (1 replies)

Re: Zero to IPSec in 4 minutes 2006-03-02
Nate

Zero to IPSec in 4 minutes 2006-03-01
Anonymous

pf.conf typo? 2006-03-01
Will B (1 replies)

Re: pf.conf typo? 2006-03-01
Kelly Martin

Zero to IPSec in 4 minutes 2006-03-02
Anonymous (1 replies)

Re: Zero to IPSec in 4 minutes 2006-03-09
Anonymous

Zero to IPSec in 4 minutes 2006-03-02
Anonymous

editing rc.conf 2006-03-02
marco

rc.conf typo? 2006-03-06
nikns

Zero to IPSec in 4 minutes 2006-03-07
NGardner

Zero to IPSec in 4 minutes -DHCP? 2006-03-20
JB (1 replies)

Re: Zero to IPSec in 4 minutes -DHCP? 2007-02-17
Anonymous

Zero to IPSec in 4 minutes 2006-03-20
Anonymous (1 replies)

Re: Zero to IPSec in 4 minutes 2006-05-04
hackmann (1 replies)

Re: Re: Zero to IPSec in 4 minutes 2007-10-13
Anonymous

Zero to IPSec in 4 minutes 2006-09-17
Dale

Zero to IPSec in 4 minutes 2006-12-02
Anonymous

IPSec LAN 2007-02-14
Bigg Scuza

Zero to IPSec in 4 minutes 2007-08-08
Anonymous

Zero to IPSec in 4 minutes 2007-09-27
Anonymous

Zero to IPSec in 4 minutes 2008-01-04
Davan

Need to enable ESP/AH 2008-03-01
Tom - lobato (at) tiencon.com (dot) br [email concealed]

Zero to IPSec in 4 minutes 2009-03-31
Anonymous (1 replies)

Re: Zero to IPSec in 4 minutes 2009-08-10
Anonymous

Double check your corrections. I just got it to work on OpenBSD 4.5 with the following in /etc/ipsec.conf

local_ip="1.2.3.4"

local_network="192.168.128.0/24"

remote_ip="5.6.7.8"

remote_network="172.16.2.0/24"

ike esp from { $local_ip $local_network } to { $remote_ip $remote_network } peer $remote_ip

ike esp from $local_ip to $remote_ip

Also, the public key files are:

/etc/isakmpd/pubkey/ipv4/1.2.3.4

(without the .pub extension).

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/infocus/1859/1373#1373