aggressive mode VPN under OpenBSD

matthew patton mep at NETSEC.NET
Fri Jun 2 10:16:56 EDT 2000


To date, several people have posted configurations that allow one to use
dynamic IP clients and OpenBSD VPN gateways. As far as I can determine,
though, such setups require all users to share the same pre-shared
key. tHat's not acceptible in my book. The only supposedly working
aggressive mode configuration I've seen doesn't use dynamic IP's and
further, recent isakmpd's reject the phase1 section because it's
missing the "Authentication=" section. So does anybody out there have a
working isakmpd.conf file that uses dynamic IP clients AND aggressive
mode?

--
Network Security Technologies Inc. - Commercial support for OpenBSD
www.netsec.net       (703) 561-0420       matthew.patton at netsec.net

"Government is not reason; it is not eloquence; it is force!
 Like fire, it is a dangerous servant and a fearful master."
  - George Washington

VPN is sponsored by SecurityFocus.COM




More information about the VPN mailing list