[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Use IPSEC as SSH replacement

To: ipsec@tis.com
Subject: Re: Use IPSEC as SSH replacement
From: Markku Savela <msa@anise.tte.vtt.fi>
Date: Wed, 2 Dec 1998 11:48:26 +0200 (EET)
In-reply-to: <199812010231.VAA15466@jekyll.piermont.com> (perry@piermont.com)
Reply-to: msa@hemuli.tte.vtt.fi (Markku Savela)
Sender: owner-ipsec@ex.tis.com

My query about using some solution based on IPSEC to replace SSH,
originates from a desire to demonstrate and do something *useful* with
IPSEC as fast as possible, preferrably *NOW*. I was hoping some
minimal effort IKE (or something) specification that would give
at least the same as SSH, but using IPSEC architecture.

A solution that would be forward compatible with future "real"
solutions that were mentioned, secure DNS etc., when they become
available. It also should be as simple to use as ssh, and free to use
(don't require CAs that cost money to get).

Just doing PING tests is boring. Is there a test setup with IPSEC on a
host that would allow me to telnet in, either to IPSEC host itself or
to a some test host behind the IPSEC gateway, or even more ambitious,
have AH+ESP (tunnel) to SG, and another AH+ESP layer to the test host
behind it [however, I only do with manual keys...].

-- 
Markku Savela (msa@hemuli.tte.vtt.fi), Technical Research Centre of Finland
Multimedia Systems, P.O.Box 1203,FIN-02044 VTT,http://www.vtt.fi/tte/staff/msa/

Follow-Ups:

Re: Use IPSEC as SSH replacement

From: Jun-ichiro itojun Itoh <itojun@itojun.org>

Re: Use IPSEC as SSH replacement

From: Will Price <wprice@cyphers.net>

Prev by Date: Re: SA bundles, multiple tunnels?
Next by Date: Re: Use IPSEC as SSH replacement
Prev by thread: Re: Use IPSEC as SSH replacement
Next by thread: Re: Use IPSEC as SSH replacement
Index(es):
- Main
- Thread