From: Oliver J. <oli...@mo...> - 2004-03-02 14:53:30
|
On Tue, 2004-03-02 at 15:12, Bruce Smith wrote: > According to slashdot, "KAME" was selected as the standard Linux IPSEC > implementation. Does anyone have any experience with KAME? (I've never > even heard of it myself) Maybe we should think about switching DL to > include KAME instead of FreeS/WAN? > KAME/racoon is already in the tree but working only witha a 2.6 kernel... there exists a backport of the ipsec-infrastructure for 2.4, if you look in the redhat kernels, but i never tried to patch a vanilla 2.4 i would rather suggest 2.4 = freeswan (until a maintained 2.6 ipsec backport is available) 2.6 = KAME/racoon i've only played with racoon, but its easy to configure and there exists a good how-to on the web for it. http://www.ipsec-howto.org/ |