[redhat-lspp] IPSec Configuration doc
Paul Moore
paul.moore at hp.com
Thu Nov 16 20:40:01 UTC 2006
Paul Moore wrote:
> Joy Latten wrote:
>
>>Klaus requested some basic steps and info for
>>configuring labeled ipsec. I started and came up with
>>the following which can later be used to assist those
>>new to labeled ipsec and wishing to understand and use it.
>>This is by no means complete. I will fill in and improve
>>in time. Let me know if anything is incorrect or can be improved.
>>
>>Currently, I am unable to successfully configure and run labeled
>>ipsec in enforcing mode on lspp 55 kernel. I'm working on ironing out
>>policy complaints so we can run in enforcing mode. Has anyone else
>>tried this?
>
>
> Thanks for sending this out.
>
> Based on your instructions I'm trying to setup a simple, manually keyed labeled
> IPsec connection between two machines running the lspp.55 kernel; both are using
> the MLS policy in permissive mode. Unfortunately, I can't seem to get it to
> work; I assume I am doing something wrong but it is not obvious to me ...
Well, nevermind that email ... I was sending traffic using the wrong context and
since I was not using racoon it was dropped.
--
paul moore
linux security @ hp
More information about the redhat-lspp
mailing list