Koozali.org: home of the SME Server
Legacy Forums => Experienced User Forum => Topic started by: Rob Wellesley on April 15, 2003, 02:18:26 AM
-
Hi there
Does anyone know whether the diffrerent versions of freeswan inter-operate? i.e. if i have an existing 5.1.2 server with freeswan 1.97 on it, will it work with a 5.6 server with 1.99
rob
-
I believe they will. I have not tried with different versions of the OS. But, I have succeeded with a 5.1.2 server running freeswan 1.9.3 making a connection to another 5.1.2 server running 1.9.7.
I have also created VPNs between freeswan and Cisco PIX and Watchgurad products too.
In theory it should work.
Hope this helps..
-James
-
J Price wrote:
>
> I believe they will. I have not tried with different
> versions of the OS. But, I have succeeded with a 5.1.2
> server running freeswan 1.9.3 making a connection to another
> 5.1.2 server running 1.9.7.
Thanks for that.
I have set up 5.1.2 vpns using freeswan with Darrell May's contrib. i am having less luck using current contribs for 5.6 on 5.6 testboxes. Are you setting up freeswan VPN's from commandline? if so is it much of a read to get up to speed on?
cheers - rob
-
Hi Rob,
use my newer version devinfo-freeswan-1.99-8sme56.noarch.rpm
from http://mirror.contribs.org/smeserver/contribs/saco/contrib/devinfo-freeswan-1.99/
There you have an extra option in the Freeswan panel to change the local ID of the Freeswan server. To interoperate with older versions you have to set the ID to the "external IP adress".
Works fine for me with some 5.5 boxes.
Peter
-
Thanks Peter -
I assume that on any modern Celeron or P4 platform one would use the i686.rpm's?
Also - in the howto, STEP 1 indicates...
...Remove remote networks from the Local networks panel. (these are autocreated as needed now.)
yet in STEP 3 we define local networks manually. This seems to be a contradiction?
rob