[clue-tech] IPSec VPN Setup?
Shawn Perry
redmop924 at comcast.net
Tue Mar 16 18:08:26 MDT 2010
OpenVPN and an ssh tunnel are going to be your best bets. OpenVPN
works alot better with windows clients though.
Shawn
On Mon, Mar 15, 2010 at 10:09 AM, Ski Dawg <skidawg at skidawg.org> wrote:
> Yep, Shawn, that is what I have figured out. We are talking to the
> system provider to see if the necessary modules would be available,
> but right now it is not looking like it.
>
> In the meantime, we are investigating other solutions, including
> OpenVPN and other things that we can find.
> --
> Doug
>
> Registered Linux User #285548 (http://counter.li.org)
> ----------------------------------------
> Never trust a computer you can't throw out a window.
> -- Steve Wozniak
>
>
>
> On Fri, Mar 12, 2010 at 12:21 PM, Shawn Perry <redmop924 at comcast.net> wrote:
>> So your server is in an OpenVZ VM container in Virginia? If so, your
>> correct. The VM cannot add kernel modules, only the VM host can. If
>> it does, you'll have access to that module, however. You can look
>> into an SSH tunnel...
>>
>> On Fri, Mar 12, 2010 at 11:18 AM, Ski Dawg <skidawg at skidawg.org> wrote:
>>> Hey Jon,
>>>
>>> We are doing Linux (our server CentOS 5.4) to other (unknown
>>> device/setup at customer site).
>>>
>>> After investigating and working on this for a couple of days, we have
>>> run into other issues. It turns out that the issue is the server
>>> itself. It is not running a full Linux kernel, but rather a vz kernel,
>>> so we are not able to add/user kernel modules (which my research shows
>>> ipsec needs).
>>>
>>> We are currently investigating other potential options for using
>>> IPSec, but it has become a lower priority at this time.
>>>
>>> And on top of that, the hardware is hosted with a company in Virgina,
>>> so we do not have physical access to it, and are not able to use a
>>> hardware solution at this time (which would probably have been our
>>> best option).
>>> --
>>> Doug
>>>
>>> Registered Linux User #285548 (http://counter.li.org)
>>> ----------------------------------------
>>> Never trust a computer you can't throw out a window.
>>> -- Steve Wozniak
>>>
>>>
>>>
>>> On Thu, Mar 11, 2010 at 6:18 PM, Jon Buttjer <jontheisguy at gmail.com> wrote:
>>>> Dawg,
>>>> Buddy. How are you? Are you setting up Linux-to-Linux or Linux-to-other?
>>>> I have experience with Cisco Pix and ASA setups, and some firewall devices.
>>>>
>>>> Let me know.
>>>> Jon
>>>>
>>>>
>>>> On Wed, Mar 10, 2010 at 11:07 AM, Chris Tubutis <ctubutis at yahoo.com> wrote:
>>>>>
>>>>> > I have been tasked at work with setting up a VPN connection from our
>>>>>
>>>>> > server to a client's network...We are running CentOS 5.4 on our server.
>>>>>
>>>>> As has been said, it can be something of a pain but actually makes some
>>>>> sense once you understand what's going on.
>>>>>
>>>>> Some RedHat documentation may jump-start ya:
>>>>>
>>>>> http://www.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5/html/Deployment_Guide/s1-vpn-ipsec.html
>>>>>
>>>>>
>>>>>
>>>>> _______________________________________________
>>>>> clue-tech mailing list
>>>>> clue-tech at cluedenver.org
>>>>> http://cluedenver.org/mailman/listinfo/clue-tech
>>>>
>>>>
>>>> _______________________________________________
>>>> clue-tech mailing list
>>>> clue-tech at cluedenver.org
>>>> http://cluedenver.org/mailman/listinfo/clue-tech
>>>>
>>> _______________________________________________
>>> clue-tech mailing list
>>> clue-tech at cluedenver.org
>>> http://cluedenver.org/mailman/listinfo/clue-tech
>>>
>> _______________________________________________
>> clue-tech mailing list
>> clue-tech at cluedenver.org
>> http://cluedenver.org/mailman/listinfo/clue-tech
>>
> _______________________________________________
> clue-tech mailing list
> clue-tech at cluedenver.org
> http://cluedenver.org/mailman/listinfo/clue-tech
>
More information about the clue-tech
mailing list