VPN - procedures for a Solaris tunnel

This is Interesting: Free IT Magazines  
Home > Archive > VPN > September 2004 > procedures for a Solaris tunnel





You are viewing an archived Text-only version of the thread. To view this thread in it's original format and/or if you want to reply to this thread please [click here]

Author procedures for a Solaris tunnel
buckwheat

2004-09-15, 8:47 pm

A basic checklist to establish a tunnel on Solaris 9:

* Setup SAs for standard transport mode between two "outside"
interfaces, this includes keysets, ipseckeys, ipnodes and
ipsecinit.conf
* Get the IPSec working between these two outsides, confirm via snoop
* Now that transport method is running between outsides, plumb up the
tunnel on both ends of the inside interfaces, using ifconfig
* Tunnel endpoints will be the existing inside interfaces VIA the
outside interfaces. Tunnel endpoints will be "numberless" IP
addresses
* Bring it up and voila - instant tunnel between two Solaris hosts.

There - leaving a number of details out that should about summarize it

Anyone see any glaring holes with this?

For some reason, my tunnel just died and din't even write me a suicide
letter. External IPSec is still working fine via AES. But the tunnel
refuses to behave. Unclear on how to run in debug/trace. IKE inop,
it's all manual.
Sponsored Links






Free braindumps | Software forum | Database administration forum

Copyright 2003 - 2008 webservertalk.com