Zero to IPSec in 4 minutes

Zero to IPSec in 4 minutes
Dragos Ruiu

This short article looks at how to get a fully functional IPSec VPN up and running between two fresh OpenBSD installations in about four minutes flat.

Expand all | Post comment

Zero to IPSec in 4 minutes 2006-03-01
Ron W. Szpak (1 replies)

Re: Zero to IPSec in 4 minutes 2007-02-24
Reza A.

Zero to IPSec in 4 minutes 2006-03-01
Anonymous

Zero to IPSec in 4 minutes 2006-03-01
Anonymous (1 replies)

Re: Zero to IPSec in 4 minutes 2006-03-02
Nate

Zero to IPSec in 4 minutes 2006-03-01
Anonymous

pf.conf typo? 2006-03-01
Will B (1 replies)

Re: pf.conf typo? 2006-03-01
Kelly Martin

Zero to IPSec in 4 minutes 2006-03-02
Anonymous (1 replies)

Re: Zero to IPSec in 4 minutes 2006-03-09
Anonymous

Zero to IPSec in 4 minutes 2006-03-02
Anonymous

editing rc.conf 2006-03-02
marco

rc.conf typo? 2006-03-06
nikns

Zero to IPSec in 4 minutes 2006-03-07
NGardner

Zero to IPSec in 4 minutes -DHCP? 2006-03-20
JB (1 replies)

Re: Zero to IPSec in 4 minutes -DHCP? 2007-02-17
Anonymous

Zero to IPSec in 4 minutes 2006-03-20
Anonymous (1 replies)

Re: Zero to IPSec in 4 minutes 2006-05-04
hackmann (1 replies)

Re: Re: Zero to IPSec in 4 minutes 2007-10-13
Anonymous

Zero to IPSec in 4 minutes 2006-09-17
Dale

As I am new to configuring VPNs, could you clarify why one of the VPN nodes is supposed to be set up in passive mode. I don't think that this is what you are saying but from reading your example I get that if one end is set up as passive that you can only reach network A from B and not reach network B from A. Could you please give any more info on what the passive function is supposed to handle.

also one other point, when are the isakmpd keys generated. They are obviously unique for each OpenBSD system right? I think I recal that these are generated on the first install.

Thanks.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/infocus/1859/687#687

Zero to IPSec in 4 minutes 2006-12-02
Anonymous

IPSec LAN 2007-02-14
Bigg Scuza

Zero to IPSec in 4 minutes 2007-08-08
Anonymous

Zero to IPSec in 4 minutes 2007-09-27
Anonymous

Zero to IPSec in 4 minutes 2008-01-04
Davan

Need to enable ESP/AH 2008-03-01
Tom - lobato (at) tiencon.com (dot) br [email concealed]