Hello and Welcome from United States to the UNIX and Linux Forums! Thank You for Visiting and Joining Our Global Community.
|
Hello and Welcome from United States to the UNIX and Linux Forums! Thank You for Visiting and Joining Our Global Community.
|
|
google unix.com
|
|||||||
| Forums | Register | Forum Rules | Links | Albums | FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
 |
| AIX AIX is IBM's industry-leading UNIX operating system that meets the demands of applications that businesses rely upon in today's marketplace. |
More UNIX and Linux Forum Topics You Might Find Helpful
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| NTP server with aix & wintel clients | chongkls77 | AIX | 0 | 09-05-2007 09:53 PM |
| Map Drive from UNIX Server to Windows Clients | kafaween | UNIX for Dummies Questions & Answers | 3 | 09-12-2006 10:37 AM |
| List of HTTP/FTP-clients on a server | indo1144 | Security | 2 | 09-28-2005 05:12 AM |
| Solaris 8 server and Jumpstarting 2.6 clients | rambo15 | SUN Solaris | 4 | 07-15-2005 05:36 PM |
| FTP from AIX to 20 Windows clients | sharuvman | Shell Programming and Scripting | 2 | 03-28-2003 06:40 PM |
 |
Powered by 
|
|
|
LinkBack | Thread Tools | Search this Thread | Rate Thread | Display Modes |
|
|
05-16-2009
|
||||
|
||||
|
IPsec from one AIX server to many windows clients
I work for a fairly large organization who recently tasked me with securing our telnet services with IPsec. We have a large mixed environment where most of our servers are running unsecured telnet. ssh was my first suggestion but because of the cost of purchasing an enterprise license for a fips compliant product, we have been steered in the ipsec direction.
I have sequestered myself in our test lab for the last month getting a reliable connection between ipsec in windows xp and AIX 5.3. The problem i'm having is that i can't seem to make a rule on AIX that allows a large range of systems to connect securely with one rule. In some of our locations many hundred xp clients will need to connect to the AIX server in some places it could be as few as three. Can anyone point me to some good screen shots or configuration examples that would do this? I've read IBM's documentation Using IKE with DHCP, it does mention that you can't use pre-shared keys to accomplish this task but it does not show you anything just tells you. I'd like something more tangible. Also there doesn't seem to be great documentation on exactly how to use X.509 or FQDN to specify a range, or even something such as a subnet or ip range. I'm fairly lost on making the connection run one-to many. Currently i can set up individual IKE tunnels for each XP client (pre-shared key authentication)and it works beautifully. If anyone can point me in the right direction or show me a redbook with screenshots, or just has any experience using aix ipsec in a mixed environment I would be eternally grateful. |
|
05-22-2009
|
|||||
|
|||||
|
You may not have had a lot of reply because everyone Iknow use ssh to connect to a system not telnet and we use IPsec only to allow thing like connections via citrix to get in to the system ( also limited ) via this tunnel.
|
|
05-26-2009
|
||||
|
||||
|
thank you for the reply. I'm finding that to be the case. We have an objective of securing all telnet communications within the network, and making it cross platform. this is pretty difficult to accomplish cheaply... Ssh works great in unix, but not so well in windows, Ipsec is the mirror.
|
|
| Bookmarks |
| Tags |
| aix, certs, ipsec, mixed environment, xp |
| Thread Tools | Search this Thread |
| Display Modes | Rate This Thread |
|
|
Hybrid Mode
