Date: Mon, 23 May 2005 23:46:36 +0200 From: Jeremie Le Hen <jeremie@le-hen.org> To: mohan chandra <mohanchandra_01@yahoo.co.in> Cc: freebsd-security@freebsd.org Subject: Re: How to setup IPSec tunnel between FreeBSD and Linux systems...? Message-ID: <20050523214636.GG850@obiwan.tataz.chchile.org> In-Reply-To: <20050523122742.49622.qmail@web8508.mail.in.yahoo.com> References: <20050523122742.49622.qmail@web8508.mail.in.yahoo.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi Mohan, > I am trying to setup ipsec tunnel between Freebsd > (host1) and Linux (host2) systems.And I also > interested in executing some ipsec test cases( Like > TAHI conformance test suite) on the same connection. > Please, suggest me some details regarding this setup > and Specify any materials which can be obtained from > from any locations(site).. > > I have enabled IPSec support for FreeBSD (4.11 > Release) and Linux (kernel-2.4.20-8), now I am trying > to estblish ipsec tunnel between these two systems.so > specify the what further procedure can be done to > establish the secure tunnel. > > Please help me to enable the connection...Any sort of > suggestion will be appreciated . FreeBSD uses either KAME IPSec or OpenBSD IPSec (known as Fast-IPSec). As far as I can tell, they are mostly compatible. Linux have two implementation of IPSec : FreeS/WAN and USAGI. FreeS/WAN is, IMHO, a big crap, has ugly code and configuration file. On the other hand, USAGI uses the same userland tools as BSD because they used to work in tight collaboration with KAME (I can't remember the detail though). Furthermore, IIRC, USAGI has been chosen to be merged to Linux mainstream kernel, FreeS/WAN seems to have died since, their last release is dated for more than one year ago. Since the daemons and configuration tools are the same now in BSD and Linux, I think this should not bring to much pain to you to make them work together. Regards, -- Jeremie Le Hen < jeremie at le-hen dot org >< ttz at chchile dot org >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20050523214636.GG850>