1820484 Members
2284 Online
109624 Solutions
New Discussion

Vpn freeSwan

 
Marco_113
Frequent Advisor

Vpn freeSwan

Hi all,
I've a couple of questions about vpn with FreeSwan.

I've read on documentation that IPsec supports two kinds of authentication:
1) manual keys (with keys stored in ipsec.conf)
2) automatic keys (with IKE and keys created by Pluto daemon, using the secret keys stored in ipsec.secrets

So, how can i decide to use one or the othe authentication method?
I ve to set anythink in ipsec.conf??

I've created my keys with rsasigkey;
I put the file obtained in ipsec.secrets
I put the public keys in ipsec.conf

The VPN works very well, but
I'm using automatic or manual authentication??

Then I' ve a connection to Internet of 640kb/sec on the gateways of tunnel, but if i just make a ping between two workstations of the different private networks, i get a speed of about 60 kb/sec.
Is normal this slowness connection on the VPN??

Thanks
1 REPLY 1
Steven E. Protter
Exalted Contributor

Re: Vpn freeSwan

It would be nice to see your ipsec.conf file.

With heavy encryption, I suffered a massive loss of speed when I allowed VPN access to a Microsoft Server in my private ISP.

I had a T1 line as most of the band width was being chewed up with encrption. The CPU was slow and that probably didn't help.

I would think if the VPN box has a really good CPu as well as the client your throughput might improve.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com