Koozali.org: home of the SME Server

Legacy Forums => Experienced User Forum => Topic started by: Tom Veitch on February 05, 2002, 10:19:16 PM

Title: IPSec Two SME servers
Post by: Tom Veitch on February 05, 2002, 10:19:16 PM

Has anyone been able to get this working,

I want to uses on site two to be able to see one folder on site one to share files though the VPN network

Can any one help

Title: Re: IPSec Two SME servers
Post by: Ryan Sutton on February 06, 2002, 12:07:13 AM

Can you ping from one LAN to the other?  If so, can you connect by (in run) \xxx.xxx.xxx.xxx(ip address) ?  Do you have domain controllers at both sites?  One domain or two?  Check that the machines on the remote site are using the same WINS or DNS your machine is using, or if you have a WINS/DNS at each site, they have to replicate/zone transfer w/ other.  Netbios broadcast messages can't pass routers.  Good luck.

Title: Re: IPSec Two SME servers
Post by: Jim Hutton on February 06, 2002, 12:24:16 AM

I'm using 4.1.2 with freeswan.  I can't seem to ping the other side.

When there is no encryption, the transmission works.

I'm monitoring my /var/log/secure and /var/log/messages, but it doesn't make much sense to me.

What is my gateway?  I did a "route" and put this in (the other side, of course).

Title: Re: IPSec Two SME servers
Post by: Jim Hutton on February 06, 2002, 01:34:30 AM

Problem solved.  Bad gateway address.

Title: Re: IPSec Two SME servers
Post by: Jim Hutton on February 06, 2002, 07:06:47 AM

How do I check the encryption strength for freeswan?

Title: Re: IPSec Two SME servers
Post by: Walter Scott on February 06, 2002, 08:57:38 AM

> ipsec look  

It appears it's using 3DES-MD5 encryption... pretty strong stuff!

Title: Re: IPSec Two SME servers
Post by: Rick on February 06, 2002, 10:02:53 AM

Is there somewhere a good how-to on how to do this?