Table of Contents
Advertisement
secure IP connection, known as IPsec. For instructions on setting up IPsec using the Network
Administration Tool (
Configuration in the Red Hat Enterprise Linux System Administration Guide. For instructions on
setting up IPsec manually, refer to the chapter titled Virtual Private Networks in the Red Hat
Enterprise Linux Security Guide.
The following example shows the
A. The unique name to identify the connection in this example is
named
/etc/sysconfig/network-scripts/ifcfg-ipsec1
TYPE=IPsec ONBOOT=yes IKE_METHOD=PSK SRCNET=192.168.1.0/24
DSTNET=192.168.2.0/24 DST=X.X.X.X
In the example above,
router.
Below is a listing of the configurable parameters for an IPsec interface:
•
, where
DST=<address>
This is used for both host-to-host and network-to-network IPsec configurations.
•
, where
DSTNET=<network>
network. This is only used for network-to-network IPsec configurations.
•
, where
SRC=<address>
setting is optional and is only used for host-to-host IPsec configurations.
•
, where
SRCNET=<network>
This is only used for network-to-network IPsec configurations.
•
TYPE=<interface-type>
the
package.
ipsec-tools
Refer to
/usr/share/doc/initscripts-<version-number>/sysconfig.txt
with the version of the
<version-number>
parameters if using manual key encryption with IPsec.
The
IKEv1 key management daemon negotiates and configures a set of parameters for
racoon
IPSec. It can use preshared keys, RSA signatures, or GSS-API. If
automatically manage key encryption, the following options are required:
•
IKE_METHOD=<encryption-method>
. If
is specified, the
GSSAPI
PSK
parameter must also be set.
IKE_CERTFILE
•
IKE_PSK=<shared-key>
system-config-network
file for a network-to-network IPsec connection for LAN
ifcfg
is the publicly routable IP address of the destination IPsec
X.X.X.X
is the IP address of the IPsec destination host or router.
<address>
is the network address of the IPsec destination
<network>
is the IP address of the IPsec source host or router. This
<address>
is the network address of the IPsec source network.
<network>
, where
<interface-type>
initscripts
, where
parameter must also be set. If
IKE_PSK
, where
<shared-key>
), refer to the chapter titled Network
ipsec1
.
is
. Both applications are part of
IPSEC
package installed) for configuration
racoon
<encryption-method>
is the shared, secret value for the PSK
IPsec Interfaces
, so the resulting file is
(replace
is used to
is either
,
, or
PSK
X509
is specified, the
X509
123
Advertisement
Table of Contents
Subscribe to Our Youtube Channel
Related Manuals for Red Hat ENTERPRISE LINUX 4.5.0
Related Products for Red Hat ENTERPRISE LINUX 4.5.0
- Red Hat CLUSTER SUITE FOR ENTERPRISE LINUX 4.5
- Red Hat CLUSTER SUITE FOR ENTERPRISE LINUX 4.6
- Red Hat CLUSTER SUITE FOR ENTERPRISE LINUX 4.7
- Red Hat ENTERPRISE LINUX 4 - DM MULTIPATH
- Red Hat ENTERPRISE LINUX 4 - LVM ADMINISTRATOR
- Red Hat ENTERPRISE LINUX 4 - DEVELOPER TOOLS GUIDE
- Red Hat ENTERPRISE LINUX 4 - USING BINUTILS
- Red Hat ENTERPRISE LINUX 4 - STEP BY STEP GUIDE
- Red Hat ENTERPRISE LINUX 3 - SECURITY GUIDE
- Red Hat ENTERPRISE LINUX 3 - USING BINUTILS
- Red Hat ENTERPRISE LINUX 3 - STEP BY STEP GUIDE
- Red Hat ENTERPRISE LINUX 5.1 DM MULTIPATH
- Red Hat LINUX 7.2 - OFFICIAL LINUX CUSTOMIZATION GUIDE
- Red Hat LINUX 7.1 - ISERIES
- Red Hat Enterprise Linux 2.1
- Red Hat ENTERPRISE LINUX 5.1 - LINUX ORACLE
Need help?
Do you have a question about the ENTERPRISE LINUX 4.5.0 and is the answer not in the manual?
Questions and answers