Jey1980
asked on
VPN IPSEC on Red Hat 5
I'd like to connect to remote sites. It has to be transparent for users
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Generally fine, but does it work with other IPsecs
yes, IPSEC is a combination of protocols...
ESP / AH = for exchange of encrypted messages (IPv4).
IKE (UDP/500 & UDP/4500) for dynamic key exchange. This generates a session key for the ESP exchange.
Many implementations do exist and are required to at least implement a minimal set of compatible items.
Also the standards define how to act on unknown en special options. So they should all work together.
Freeswan was one of the first implementations that could negotiate with almost all other implementations. Openswan is a continuation of the Freeswan effort.
ESP / AH = for exchange of encrypted messages (IPv4).
IKE (UDP/500 & UDP/4500) for dynamic key exchange. This generates a session key for the ESP exchange.
Many implementations do exist and are required to at least implement a minimal set of compatible items.
Also the standards define how to act on unknown en special options. So they should all work together.
Freeswan was one of the first implementations that could negotiate with almost all other implementations. Openswan is a continuation of the Freeswan effort.
http://openswan.org/code/