Logo

Charles Steinkuehler's LEAF/LRP Website

Home ] Up ] Contents ] Links ] Search ] Contribute ] Mirrors ] c0wz mirrror ] Support ]

IPSec 1.4
IPSec 1.3 ] [ IPSec 1.4 ] IPSec 1.5 ]

 

DOWNLOAD CONFIG MAN PAGES NOTES FILES SOURCE

IPSEC is Internet Protocol SECurity. It uses strong cryptography to provide both authentication and encryption services. Authentication ensures that packets are from the right sender and have not been altered in transit. Encryption prevents unauthorised reading of packet contents.

These services allow you to build secure tunnels through untrusted networks. Everything passing through the untrusted net is encrypted by the IPSEC gateway machine and decrypted by the gateway at the other end. The result is Virtual Private Network or VPN. This is a network which is effectively private even though it includes machines at several different sites connected by the insecure Internet.

For more info, see the FreeS/WAN web site

DOWNLOAD

Eiger
ipsec.lrp

1.4
IPSec Kernel 2.2.16-1

CONFIG

  1. To use this package, you need to use an IPSec enabled kernel.  The kernel above is version 2.2.16-1 (Eiger) and contains the IPSec patches.  Copy the IPSec kernel above to your LRP floppy disk (name the file 'linux'), and add the ipsec.lrp as usual.
  2. Configuration is done through the /etc/ipsec.conf configuration file and /etc/ipsec.secrets secrets file
  3. WARNING - The config and secrets files require PROPER FORMATTING.  See the links below for details.
  4. There is extensive online documentation covering all aspects of installation, configuring, and testing available at the FreeS/WAN web site
  5. Make sure you allow the ISPec packets through your firewall...see the above links for details.

MAN PAGES

NOTES

  1. This package is an updated replacement of my older IPSec.lrp version 1.3 (and corresponding EigerBeta kernel).  If you would like to use the older version, it is still available here.
  2. The klips code is no longer compiled as a module.  It is now embedded directly in the kernel above.  This will make kernel version updates easier, as only the kernel file needs to change (the ipsec.lrp file can stay the same).
  3. When debugging IPSec, refer to to /var/log/auth.log instead of /var/log/secure.  LRP and debian systems do not use /var/log/secure, but the same info gets sent to /var/log/auth.log
  4. Modifications made to the distribution scripts for the LRP environment:
    1. /etc/init.d/ipsec
      1. Add code to make /dev/ipsec
      2. startklips() - Change module loading code from depmod and modprobe to insmod
      3. defaultinterface() - Replace wc command with some shell script
      4. klipsinterface() - Replace expr commands with sed
    2. /usr/local/lib/ipsec/_updown
      1. Change ipfwadm commands to ipchains (2 places)
    3. /usr/local/lib/ipsec/look
      1. Remove sort commands or replaced with cat (3 places)
    4. /usr/local/lib/ipsec//manual
      1. Change ipfwadm commands to ipchains (2 places)
  5. WARNING - FreeS/WAN includes many scripts to do a wide variety of setup and configuration.  I have attempted to port the scripts cleanly to the limited environment available on LRP, but I have not and can not extensively test all aspects of the scripts.  I know the core IPSec functionality works, as I am running a VPN using these exact files (except for ipsec.conf and ipsec.secrets :).  If you discover and fix any problems with the scripts, please let me know so I can include them in future versions.
  6. 'Clients' - The FreeS/WAN IPSec software works with a wide variety of other IPSec implementations.  See the compatibility section of the documentation for details.  If you want a free windows based IPSec connection (just use FreeS/WAN for a free linux solution), you might want to look at the freeware version of PGP.

FILES

 6/12/00  18:41         545,923  linux-2.2.16-1-IPSec.bin

 6/16/00  10:52         377,696  ipsec.lrp

-rwxr-xr-x root/root    149788 Sep 13 08:55 1999 bin/gawk
lrwxrwxrwx root/root         0 Jun 12 12:19 2000 bin/awk -> gawk
-rwxr-xr-x root/root     69444 May 09 20:45 1998 bin/egrep
-rwxr-xr-x root/root     19008 Apr 23 23:43 1998 usr/bin/tr
-rwxr-xr-x root/root      7932 Jan 24 11:40 2000 usr/bin/column
-rwxr-xr-x root/root     28348 Mar 14 00:41 2000 sbin/ifconfig
-rwxr-xr-x root/root     24368 Mar 14 00:41 2000 sbin/route
-rw-r--r-- root/root      1279 Jun 16 06:02 2000 etc/ipsec.conf
-rw------- root/root       510 Jun 16 06:02 2000 etc/ipsec.secrets
-rwxr-xr-x root/root     13134 Jun 16 06:08 2000 etc/init.d/ipsec
-rwxr-xr-x root/root      2346 Jun 12 09:56 2000 usr/local/sbin/ipsec
drwxr-xr-x root/root         0 Jun 12 12:19 2000 usr/local/lib/ipsec/
-rwxr-xr-x root/root      8680 Jun 12 09:57 2000 usr/local/lib/ipsec/_confread
-rwxr-xr-x root/root      2124 Jun 12 09:57 2000 usr/local/lib/ipsec/_include
-rwxr-xr-x root/root      1332 Jun 12 09:57 2000 usr/local/lib/ipsec/_keycensor
-rwxr-xr-x root/root      1712 Jun 12 09:57 2000 usr/local/lib/ipsec/_secretcensor
-rwx--x--x root/root      3441 Jun 12 11:16 2000 usr/local/lib/ipsec/_updown
-rwxr-xr-x root/root      9315 Jun 12 09:57 2000 usr/local/lib/ipsec/auto
-rwxr-xr-x root/root      3681 Jun 12 09:57 2000 usr/local/lib/ipsec/barf
-rwxr-xr-x root/root     46757 Jun 12 09:57 2000 usr/local/lib/ipsec/eroute
-rwxr-xr-x root/root      2346 Jun 12 09:57 2000 usr/local/lib/ipsec/ipsec
-rwxr-xr-x root/root     37952 Jun 12 09:57 2000 usr/local/lib/ipsec/klipsdebug
-rwxr-xr-x root/root      2040 Jun 16 04:19 2000 usr/local/lib/ipsec/look
-rwxr-xr-x root/root     13885 Jun 16 04:25 2000 usr/local/lib/ipsec/manual
-rwxr-xr-x root/root    275479 Jun 12 09:57 2000 usr/local/lib/ipsec/pluto
-rwxr-xr-x root/root      8569 Jun 12 09:57 2000 usr/local/lib/ipsec/ranbits
-rwxr-xr-x root/root     51893 Jun 12 09:57 2000 usr/local/lib/ipsec/rsasigkey
lrwxrwxrwx root/root         0 Jun 12 12:19 2000 usr/local/lib/ipsec/setup -> /etc/init.d/ipsec
-rwxr-xr-x root/root       865 Jun 12 09:57 2000 usr/local/lib/ipsec/showdefaults
-rwxr-xr-x root/root     55309 Jun 12 09:57 2000 usr/local/lib/ipsec/spi
-rwxr-xr-x root/root     39630 Jun 12 09:57 2000 usr/local/lib/ipsec/spigrp
-rwxr-xr-x root/root     11023 Jun 12 09:57 2000 usr/local/lib/ipsec/tncfg
-rwxr-xr-x root/root     23710 Jun 12 09:57 2000 usr/local/lib/ipsec/whack
-rwxr-xr-x root/root      1621 Jun 12 09:57 2000 usr/local/lib/ipsec/showhostkey
-rw-r--r-- root/root        87 Feb 25 11:15 2000 var/lib/lrpkg/ipsec.conf
-rw-r--r-- root/root      1777 Jun 12 14:23 2000 var/lib/lrpkg/ipsec.help
-rw-r--r-- root/root       192 Jun 12 12:21 2000 var/lib/lrpkg/ipsec.list
-rw-r--r-- root/root         4 Jun 12 14:14 2000 var/lib/lrpkg/ipsec.version

SOURCE

 
Local Web Statistics
Send feedback about this web site.
Last modified: December 04, 2001