[Leaplist] {Disarmed} Ipcop ipsec tunnel problems
Randall Perry
randallp at domain-logic.com
Thu May 14 03:21:27 EDT 2009
I was able to get my configuration issues worked out, but I cannot get it to
connect.
It seems that the OpenSwan on Ipcop was not compiled with XAUTH support.
This makes it difficult to connect to Cisco/Windows/Avaya VPN boxes.
I have gotten around the Cisco and Windows connection issues before.
But the Avaya stuff will require a firmware rewrite for the telephones (way
beyond my expertise here) or a recompile of the OpenSwan for IPCOP 1.4.20
Neither of these are good options for me.
If anyone wants to attack the firmware code, I can get you a copy of the
existing firmware I threw on the phones (built in IPsec client)
I think I will just plop the task on another box I can configure with a
newer version of OpenSwan (with XAUTH compiled in)
--
Randall Perry
www.domain-logic.com
574.612.5893
"Gentleman, you have come 60 days too late. The depression is over."
- Herbert Hoover, in response to a request for a public works program to
help speed the recovery, June 1930
"All safe deposit boxes in banks or financial institutions have been
sealed... and may only be opened in the presence of an agent of the I.R.S."
- President FDR, 1933
--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.leap-cf.org/pipermail/leaplist/attachments/20090514/e6daa6cd/attachment.html
More information about the Leaplist
mailing list