ipsec interoperate Solaris Windows 2000

Thomas J. Arseneault arsen at CERTAINTYSOLUTIONS.COM
Fri Aug 18 22:41:30 EDT 2000


Can't help you with why the problems between two Solaris or Two Windows
boxes but I dou'bt you'll be able to get it to work between Solaris and
Windows. Windows uses IPSec as part of their L2TP protocol. The actual
tunnel is PPP and IPSec is used more  or less as a transport medium. This is
different than the way IPSec is used by most VPN applications. Solaris (by
the way is IPSec part of Solaris 8 now or are you using a third party
application?) probably uses IPSec as the VPN itself. Also by the way I have
heard of, but have not seen, some application that just just tunnel mode
(mainly Security Gateways, routers and the like where transport mode does
not make any sense) and maybe the Solaris implemntation is done like that?

**********************************************
Tom Arseneault
System Admin.
Certainty Solutions, formerly Global Networking and Computing (GNAC).
"Certainty in an Uncertain World"
arsen at certaintysolutions.com
http://web.corp.rwc.crtsol.com
**********************************************

> -----Original Message-----
> From: VPN Mailing List [mailto:VPN at SECURITYFOCUS.COM]On Behalf Of
> Garrard, David
> Sent: Wednesday, August 16, 2000 6:00 PM
> To: VPN at SECURITYFOCUS.COM
> Subject: ipsec interoperate Solaris Windows 2000
>
>
> Hi a quick question on something that has had me pulling my hair
> out. I have
> been playing about with IPSEC implementations in Solaris 8 and
> Windows 2000. So
> far I have achieved the following:
>
>    Have gotten IPSEC with md5/3des to work between two Solaris
> boxes in Tunnel
>    mode but not transport mode
>    Have gotten IPSEc with md5/3des to work between two Windows
> 2000 boxes using
>    a preshared key.
>
> All attempt to get Solaris 8 IPSEc to work in transport mode have
> failed, all
> attempts to get a secured tunnel between two Windows 2000 boxes
> have failed and
> all attempts to get IPSEC to interoperate in any mode between
> Windows 2000 and
> Solaris 8 have failed.
>
> Has anyone on the list achieved this? All help greatly appreciated.
>
> David L. Garrard
>
> VPN is sponsored by SecurityFocus.COM
>

VPN is sponsored by SecurityFocus.COM




More information about the VPN mailing list