| IPSEC | IPSec related notes and documentation (mostly FreeSWAN related). |
Each end MUST be able to talk to each other on port 500 UDP. If this is not possible the IKE protocol fails and so does the authentication. There is no workaround for this. Port-forwarding is acceptable which many firewalls do. This mean that only one machine behind that port-forward can talk IPSec at the same time.
Official doc Jixen Really good documentation describing how to handle freeswan. x509
Copyright © 2008 Ola Lundqvist |