Topic: IPSec

[Neririn]

Can anyone help me with a best practices to "Cleanly Undo" the tunnels that get created when following the http://wiki.contribs.org/Ipsec contrib? I no longer need either of the SME boxes to have tunnels to any other box, but I don't want to break the inherent VPN capability within SME.

[cactus]

Can anyone help me with a best practices to "Cleanly Undo" the tunnels that get created when following the http://wiki.contribs.org/Ipsec contrib? I no longer need either of the SME boxes to have tunnels to any other box, but I don't want to break the inherent VPN capability within SME.

Basically on SME Server it is very easy to do so, revert the changes you made and remove the created custom template fragments and restart services like explained in the howto when installing.
You might have to bring down the tunnels to start first:

Code: [Select]

ifdown ipsec0

[Neririn]

How do I revert expanded templates back to the original.  If i remove the custom template definition in /etc/rc.d/init.d/masq then re-run /sbin/e-smith/expand-template will that suffice?

[cactus]

How do I revert expanded templates back to the original.  If i remove the custom template definition in /etc/rc.d/init.d/masq then re-run /sbin/e-smith/expand-template will that suffice?

Yes. More information on the template system can be found in the SME Server Development Guide linked from the wiki.