https://community.hpe.com/t5/operating-system-linux/ipsec-on-rhel/m-p/5337175#M53209 Hi,<BR /><BR />Sound interesting, please just raise your doubt and any info<BR /><BR />Thanks Tue, 20 Sep 2011 05:28:12 GMT Naj 2011-09-20T05:28:12Z https://community.hpe.com/t5/operating-system-linux/ipsec-on-rhel/m-p/5319541#M53163 <P>Greetings!</P><P>&nbsp;</P><P>Could someone please let me know where to start with this topic "IPSEC on RHEL" ? I am really intrested in learning and knowing about this security feature. Please help, I have a test box in our company and i ould like to test this.</P><P>&nbsp;</P><P>Thanks</P><P>&nbsp;</P><P>Mike.</P> Thu, 01 Sep 2011 17:46:43 GMT https://community.hpe.com/t5/operating-system-linux/ipsec-on-rhel/m-p/5319541#M53163 Mike_Swift 2011-09-01T17:46:43Z https://community.hpe.com/t5/operating-system-linux/ipsec-on-rhel/m-p/5336797#M53207 <P>Any thoughts??</P><P>&nbsp;</P><P>Mike</P> Mon, 19 Sep 2011 19:51:07 GMT https://community.hpe.com/t5/operating-system-linux/ipsec-on-rhel/m-p/5336797#M53207 Mike_Swift 2011-09-19T19:51:07Z https://community.hpe.com/t5/operating-system-linux/ipsec-on-rhel/m-p/5337175#M53209 Hi,<BR /><BR />Sound interesting, please just raise your doubt and any info<BR /><BR />Thanks Tue, 20 Sep 2011 05:28:12 GMT https://community.hpe.com/t5/operating-system-linux/ipsec-on-rhel/m-p/5337175#M53209 Naj 2011-09-20T05:28:12Z https://community.hpe.com/t5/operating-system-linux/ipsec-on-rhel/m-p/5337885#M53212 <P>I am aware of the basic IPSEC set up (host to host), I am more intrested in setting up IPSEC from a linux host via firewall, and also to a Juniper and also the cases where it needs to be terminated. So the usual stuff about linux to linux is not applicable here! Please let me know if someone has more ideas/links on this.</P><P>&nbsp;</P><P>Thanks</P><P>&nbsp;</P><P>Mike.</P> Tue, 20 Sep 2011 15:38:29 GMT https://community.hpe.com/t5/operating-system-linux/ipsec-on-rhel/m-p/5337885#M53212 Mike_Swift 2011-09-20T15:38:29Z https://community.hpe.com/t5/operating-system-linux/ipsec-on-rhel/m-p/5339351#M53226 <P>Do you understand IPSEC at the conceptual level? Do you know what Phase 1 and Phase 2 are, and can you determine what kind of IPSEC security proposals you wish to use/accept? Do you want to use IPSEC in tunnel or transport mode?</P><P>&nbsp;</P><P>At least on my Debian system, I have three separate IPSEC suites available: isakmpd, openswan and racoon. Do you have any preferences on them?</P><P>&nbsp;</P><P>Google is your friend: I googled for "linux ipsec interoperability juniper" and even the first hit looked like it might be useful to you.</P><P>&nbsp;</P><P>If you want to configure a firewall to pass through IPSEC traffic, you just need to allow its component protocols: for basic IPSEC, you need port 500/UDP for the ISAKMP key management protocol, and protocol numbers 50 (and maybe 51) for the payload. If you need NAT traversal (NAT-T), port 4500/UDP is required.</P><P>&nbsp;</P><P>To adequately answer an open question like this, a day-long lecture might be needed - and that is obviously hard to provide in a discussion forum. You might get better answers if you can nail down your requirements with more specificity. Otherwise, I must recommend that you check the IT training providers and/or universities near you for IPSEC training courses.</P> Wed, 21 Sep 2011 15:27:26 GMT https://community.hpe.com/t5/operating-system-linux/ipsec-on-rhel/m-p/5339351#M53226 Matti_Kurkela 2011-09-21T15:27:26Z