I am trying to get my Fedora client and monowall to use IPsec and have a few questions:
1) Fedora implements two types of IPsec connections "host-to-host" (generic transport) and
"network-to-network (VPN)" (generic tunnel). It appears the monowall gui only supports tunnel IPsec
connections. Is is possible to use the Fedora "host-to-host (generic transport) with monowall acting
as a "host"? And if so how?
2) If "host-to-host" is not possible can "network-to-network" be used? Seems much more complicated
so would prefer not to go this route.
3) The FreeBSD Handbook (Chap 14.10.1) states:
"Note, that it is not currently possible to use the “Fast IPsec” subsystem in lue with the KAME
implementation of IPsec." Since monowall uses “Fast IPsec” is this a problem with Fedora IPsec?
4) Is it possible to setup a manual keyed connection using KAME-tools in monowall?
Would greatly appreciate any insight on this issue. Thanks, Bob.
Yahoo! Photos – Showcase holiday pictures in hardcover
Photo Books. You design it and we’ll bind it!