1 |
On 2008-12-11, Mick <michaelkintzios@×××××.com> wrote: |
2 |
> Hi All, |
3 |
> |
4 |
> I would like to set up a VPN connection to a router which is using IKE & |
5 |
> IPsec: http://www.ciscopress.com/articles/article.asp?p=25474&seqNum=7 |
6 |
> |
7 |
> Would I be able to achieve this using OpenVPN on my gentoo box? |
8 |
|
9 |
AFAICT, no. OpenVPN uses SSL/TLS. |
10 |
|
11 |
> I read the IPsec HowTo and scared myself to death (it seems |
12 |
> long enough to warrant me taking time off work to read it . . |
13 |
> . and at least another day to try it ;) |
14 |
|
15 |
You might want to have a look at the OpenVPN docs, but my |
16 |
understanding is that OpenVPN isn't compatible with IPSec/IKE. |
17 |
From the OpenVPN FAQ: |
18 |
|
19 |
OpenVPN's security model can be summarized as such: Use the |
20 |
IPSec ESP protocol for tunnel packet security, but then |
21 |
drop IKE in favor of SSL/TLS for session authentication. |
22 |
This allows for a lightweight, portable VPN implementation |
23 |
that draws on IPSec's strengths, without introducing the |
24 |
complexity of IKE. |
25 |
|
26 |
|
27 |
-- |
28 |
Grant Edwards grante Yow! FOOLED you! Absorb |
29 |
at EGO SHATTERING impulse |
30 |
visi.com rays, polyester poltroon!! |