This is the mail archive of the ecos-discuss@sourceware.org mailing list for the eCos project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: IPSec and NAT-T in eCos

From: Matt Jerdonek <maj1224 at yahoo dot com>
To: Tim Hatton <tim at coherent-tech dot co dot uk>, ecos-discuss at ecos dot sourceware dot org
Date: Fri, 7 Apr 2006 09:08:45 -0700 (PDT)
Subject: Re: [ECOS] IPSec and NAT-T in eCos

I had looked at IPSec in eCos a couple years ago, but
I had enough problems with it that we decided to
abandon that aspect of our project.  One major hurdle
was the key exchange protocol.

However, we went forward with the SSL aspect and had a
good amount of success.  Andrew Lunn did an OpenSSL
port to eCos a couple years back that proved to be
reliable.

-- Matt

--- Tim Hatton <tim@coherent-tech.co.uk> wrote:

> 
> Hello,
> I'm in the process of designing an embedded network
> device and will be using
> eCos for the first time. The device in question will
> sit behind a customer's
> firewall and need to be remotely administered. In
> order to allow remote
> admin through a firewall I am currently considering
> using IPSec, i.e. allow
> the eCos application to set up an IPSec tunnel back
> to our firewall so it
> will have a presence on our network and I can then
> connect to it and
> administer it.
> 
> First of all, to use thus mechanism I would need the
> eCos app to be able to
> set up an IPSec tunnel through a NAT firewall. So,
> does the IPSec support in
> eCos handle NAT Traversal? And more generally is the
> IPSec support in eCos
> consider a good, stable implementation in terms of
> interoperability?
> 
> Secondly, are there any other mechanisms I should be
> considering to solve
> the initial requirement that people are aware of? I
> have also been
> considering SSL VPN but to get the "network
> extension" that I want seems
> convoluted at best.
> 
> Any ideas, or help, would be greatly appreciated.
> Best regards,
> Tim Hatton
> --
> View this message in context:
>
http://www.nabble.com/IPSec-and-NAT-T-in-eCos-t1411122.html#a3800728
> Sent from the Sourceware - ecos-discuss forum at
> Nabble.com.
> 
> 
> -- 
> Before posting, please read the FAQ:
> http://ecos.sourceware.org/fom/ecos
> and search the list archive:
> http://ecos.sourceware.org/ml/ecos-discuss
> 
> 


__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com 

-- 
Before posting, please read the FAQ: http://ecos.sourceware.org/fom/ecos
and search the list archive: http://ecos.sourceware.org/ml/ecos-discuss

Follow-Ups:
- Re: IPSec and NAT-T in eCos
  - From: Tim Hatton

References:
- IPSec and NAT-T in eCos
  - From: Tim Hatton

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]