Advertisement
If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)
Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie
Hi there,
There is an issue with role permissions that is being worked on at the moment.
If you are having trouble with access or permissions on regional forums please post here to get access: https://www.boards.ie/discussion/2058365403/you-do-not-have-permission-for-that#latest

Encrypting network communications

  • 09-01-2005 2:53am
    #1
    po0k
    Registered Users, Registered Users 2 Posts: 15,817 ✭✭✭✭


    Is it possible to fully encrypt (and authenticate) network links under linux so that everything passes through encrypted while being transparent to the end-user?

    I have a VIA EPIA Nehemiah-based machine with the Padlock system, and have come across this. The benchmarks are rather exciting.

    I am using this machine as the basis for a project I'm doing, the aim of which is to build a self-powered wireless router.
    I don't want to use WEP if possible, and I don't think WPA is sufficiently supported, so I'm looking at other options.
    Conceptually this router will be connected to similar ones via 802.11/802.16 links performing IPv4 and IPv6 Uni and Multicast routing.
    I wish to secure these links transparently as an alternative to WEP and WPA.

    I have little experience of IPSec, and have only started reading up on it this evening, but my time is limited at the moment (course-work piling up).

    Is it possible?


Comments

  • #2
    Capt'n Midnight
    Moderators, Recreation & Hobbies Moderators, Science, Health & Environment Moderators, Technology & Internet Moderators Posts: 93,563 Mod ✭✭✭✭Capt'n Midnight


    You are looking for a VPN.
    The trick is to setup virtual network adaptors at each end of the link and route traffic through them.

    PPTP / CIPE / Zebedee (all have windows versions too)

    http://sites.inka.de/sites/bigred/devel/cipe.html
    www.winton.org.uk/zebedee/ - can test with zVNC
    http://pptpclient.sourceforge.net - there is a server side too

    check out Freeswan etc.


  • #3
    po0k
    Registered Users, Registered Users 2 Posts: 15,817 ✭✭✭✭po0k


    Yeah, was looking at setting up an IPSec tunnel using the 2.6 native implementation, AH authentication and AES encryption.

    Should be nice :)


  • #4
    tomk
    Registered Users, Registered Users 2 Posts: 1,067 ✭✭✭tomk


    I'm an ipsec noob myself, but I think you might find Opportunistic Encryption useful.


  • #5
    po0k
    Registered Users, Registered Users 2 Posts: 15,817 ✭✭✭✭po0k


    I've logged the progress report, so I should get around to reading that sometime this week.

    Looks interesting, thanks :)


Advertisement