Setting Up Your Vpn Server Using Certificate Authority - Novell LINUX ENTERPRISE SERVER 11 - SECURITY Manual
Hide thumbs
Also See for LINUX ENTERPRISE SERVER 11 - SECURITY:
- Installation (5 pages) ,
- Administration manual (452 pages)
Table of Contents
Advertisement
To verify the VPN connection, use ping on both client and server to see if you can
reach each other. Ping server from client:
ping 10.23.8.1
Ping client from server:
ping 10.23.8.2
16.3 Setting Up Your VPN Server
Using Certificate Authority
The example shown in
work. This section explains how to build a VPN server that allows more than one con-
nection at the same time. This is done with a public key infrastructure (PKI). A PKI
consists of a pair of public and private keys for the server and each client and a master
certificate authority (CA).
The general overview of this process involves these steps, which are explained in the
following subsections:
1 Build your public key infrastructure (see
(page 187)).
2 Configure your server (see
3 Configure your clients (see
16.3.1 Creating Certificates
Before a VPN connection gets established, the client must authenticate the server cer-
tificate. On the other side, the server must also authenticate the client certificate. This
is called mutual authentication.
Section 16.2
(page 185) is useful for testing, but not for daily
Section 16.3.2, "Configuring the Server"
Section 16.3.3, "Configuring the Clients"
Chapter 17, Managing X.509 Certification
Section 16.3.1, "Creating Certificates"
Configuring VPN Server
(page 190)).
(page 191)).
(page 197)
187
Advertisement
Table of Contents
Need help?
Do you have a question about the LINUX ENTERPRISE SERVER 11 - SECURITY and is the answer not in the manual?