Openswan: Works, but...
Mikkel L. Ellertson
mikkel at infinity-ltd.com
Thu Feb 5 21:34:37 UTC 2009
Roger Grosswiler wrote:
> Hi,
>
> According to the homepage of openswan, i configured a server and a
> roadwarrior (think this is host-to-host).
>
> Using tcpdump, i see, that traffic between those 2 hosts is encrypted,
> if the server is the endpoint.
>
> this server is a transparent proxy. so, if i surf eg. to google via
> this server, the traffic seems no longer encrypted to me. (no
> esp-packets mentionned in tcpdump).
>
> Even my mailserver is not on the same machine, so this traffic isn't
> encrypted either.
>
> all i want is to make sure, that ALL traffic that comes from any client
> and passes through my server is encrypted, as connections are wireless.
>
> btw. if i tell firefox to use the proxy-server instead of using
> transparent proxying, internet traffic gets encrypted too. but i would
> like to use transparent proxying.
>
> how can i do this? or is it encrypted, and by any reason i don't see it
> like this?
>
> Thx,
> Roger
>
Dumb question - are you monitoring just the traffic across the
"host-to-host" link, or are you also getting the local network traffic?
Mikkel
--
Do not meddle in the affairs of dragons,
for thou art crunchy and taste good with Ketchup!
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 197 bytes
Desc: OpenPGP digital signature
URL: <http://listman.redhat.com/archives/fedora-list/attachments/20090205/aad69c55/attachment-0001.sig>
More information about the fedora-list
mailing list