[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: What's the best for VPN?

On Sunday, 16 November 2003, at 13:06:20 +0100,
Teófilo Ruiz Suárez wrote:

> Is it possible to use IPsec with that configuration using Opportunistic
> Encryption?.
I don't think that Opportunistic Encryption (OE) is the key here, but
some way for the "VPN gateway" at your office premises to authenticate
you wherever you may connect from.

I think the simplest way to achieve this is to use certificate-based
authentication, via X5.09 certificates. Set up a Certification Authority
(CA) on your gateway, issue a cert for your portable computer, and
instruct your IPsec implementations to authenticate based on this.


Jose Luis Domingo Lopez
Linux Registered User #189436     Debian Linux Sid (Linux 2.6.0-test9-mm3)

Reply to: