1999 Linux Symposium

using frees/wan


Using FreeS/WAN

The Internet was created as a government research network with the general assumption that everyone intended to cooperate. Since then the public has gained access to its resources: databases, bandwidth, and connectivity. Because of the public access, security has become much more prominent issue.

Network layer encryption has become more important due to the desire for the Internet to be a general purpose all-in-one network for commerce, collaboration, and recreation. IPSec is a suite of RFCs that define a set of protocols for packet layer encryption to provide authentication and privacy.

We will begin with a basic overview of network security. We will then look at some of the proposed standards and RFCs that define IPSec. Part two will consist of a much more practical look at real world examples, including the classical VPN (virtual private network) and the Road Warrior (roaming IP) security configurations. We will also cover some additional background about FreeS/WAN.

We will then implement a working IPSec network tunnel using FreeS/WAN.

Richard Guy Briggs

Richard Guy Briggs got his taste of UNIX systems in 1990 while at Corel Systems Corporation, doing interoperation testing and at the University of Ottawa using DEC Ultrix and IBM AIX systems.

He has been working with Linux since version 0.13 when he saw announcements about it on comp.ox.minix. He subsequently used Linux to train the artificial neural network temporal integrator for his 4th year undergraduate speech recognition project in September 1992.

Since then, he has also been involved in five solar vehicle competitions.

Richard has been maintaining and updating KLIPS, the FreeS/WAN kernel module for that Linux IPSec implementation for the last 2 years.

© 2000 Linux Symposium.  All Rights Reserved.