DaemonForums  

Go Back   DaemonForums > OpenBSD > OpenBSD Security

OpenBSD Security Functionally paranoid!

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 14th January 2014
Dr-D's Avatar
Dr-D Dr-D is offline
Port Guard
 
Join Date: Jun 2011
Posts: 38
Thanked 0 Times in 0 Posts
Default OpenBSD VPN Setup

I hope I'm posting this in the right section. Before delving into this head first I'd like to know if I'm starting out on the right path. I want to setup a VPN with my OpenBSD 5.3 router at my house and connect to a Cisco RV042 router on the other end. I found instructions for connecting two OpenBSD routers at this link:
http://www.openbsdsupport.org/vpn-ipsec.html

If I setup my OpenBSD router with those instructions will it work connecting to an RV042 on the other side rather than another OpenBSD router? I know how to setup the RV042 router as I currently have a VPN setup with it connected to another RV042 at another site. Now I need to connect home network to the main office.

Thanks.
Reply With Quote
  #2   (View Single Post)  
Old 14th January 2014
jggimi's Avatar
jggimi jggimi is offline
More noise than signal
 
Join Date: May 2008
Location: USA
Posts: 3,803
Thanked 214 Times in 189 Posts
Default

That howto is dated 2009, but I believe it must have been written years before, as it recommends using isakmpd.conf rather than the far more simple and easy to use ipsec.conf(5), which became available in 2005.

To highlight the simplicity of the newer configuration tool, a popular howto for ipsec.conf was titled Zero to IPSec in 4 minutes. That proved so popular, that the OpenBSD Journal published a follow on article they titled 0 to IPSec in 4 minutes (To a Cisco!). I couldn't tell you whether the guidance in the latter howto would be applicable to your environment. What it does highlight is that you will need a basic understanding of how IPSec works, how the two gateways nodes negotiate SAs and Flows, the capabilities of both gateways, and how to ensure that your traffic is properly encrypted between the two.

The ipsec(4) man page is a good starting point on the road to understanding.
Reply With Quote
  #3   (View Single Post)  
Old 4th April 2014
Dr-D's Avatar
Dr-D Dr-D is offline
Port Guard
 
Join Date: Jun 2011
Posts: 38
Thanked 0 Times in 0 Posts
Default

Thank you so much jggimi! Worked perfectly first try. Love this site, you guys are awesome!
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
OpenBSD how to start (basic setup) wesley Guides 4 18th July 2012 06:29 PM
Need help with NAT setup Quaxo OpenBSD Installation and Upgrading 6 27th January 2009 08:03 PM
how setup arpwatch for OpenBSD mfaridi OpenBSD Packages and Ports 1 11th December 2008 05:22 PM
DJ Setup tad1214 FreeBSD General 8 21st July 2008 01:50 PM
How To Setup WPA? warriors OpenBSD General 8 15th June 2008 04:39 PM


All times are GMT. The time now is 01:35 AM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick