Changes

From SME Server
Jump to navigationJump to search

Libreswan (view source)

Revision as of 16:18, 22 June 2016

210 bytes added ,  16:18, 22 June 2016
→‎Setting
Line 72: Line 72:  
It is recommended to create a very strong random password and keep this safe. One way of generating and store a random strong password is explained [http://wiki.contribs.org/Useful_Commands#Generating_strong_random_password '''here''']
 
It is recommended to create a very strong random password and keep this safe. One way of generating and store a random strong password is explained [http://wiki.contribs.org/Useful_Commands#Generating_strong_random_password '''here''']
   −
===Setting===
+
===Settings===
    
The contrib has a lot of configurable settings but with the defaults and few details it should just work
 
The contrib has a lot of configurable settings but with the defaults and few details it should just work
Line 88: Line 88:  
  signal-event ipsec-update
 
  signal-event ipsec-update
   −
Check /var/log/pluto/pluto.log
+
===Logs===
 +
 
 +
First place to look is /var/log/pluto/pluto.log
 +
 
 +
The following will give you connection details.
 
  ipsec whack --status
 
  ipsec whack --status
 +
 +
You should get this if the connection made : 'IPsec SA established'
 +
 +
The following check your configuration:
 +
 
  ipsec verify (may be some warnings - severity depends on what they are)
 
  ipsec verify (may be some warnings - severity depends on what they are)
 +
 +
 +
=== RSA Keys===
    
For the better security it is recommended to use RSA keys. There is more on this on the github page https://github.com/reetp/smeserver-libreswan/blob/master/IpsecSettings.txt
 
For the better security it is recommended to use RSA keys. There is more on this on the github page https://github.com/reetp/smeserver-libreswan/blob/master/IpsecSettings.txt
Retrieved from "https://wiki.koozali.org/Special:MobileDiff/31537"

Navigation menu