This shows you the differences between two versions of the page.
Both sides previous revision
Previous revision
Next revision
|
Previous revision
Next revision
Both sides next revision
|
userdoc:tt_ipsec_vpn_apple_ios [2012/09/14 16:01] abelbeck |
userdoc:tt_ipsec_vpn_apple_ios [2012/09/14 16:03] abelbeck |
C:\Documents and Settings\Administrator\My Documents\Shrew Soft VPN\certs | C:\Documents and Settings\Administrator\My Documents\Shrew Soft VPN\certs |
| |
It is suggested to copy the CA cert (''ca.crt''), client cert (''mb13.crt''), and client unencrypted private key (''mb13.key'') for the client cert, to that location. Select these files using the "Authentication | Credentials" tab. | It is suggested to copy the CA cert (''ca.crt''), client cert (''mb13.crt''), and unencrypted client private key (''mb13.key'') for the client cert, to that location. Select these files using the "Authentication | Credentials" tab. |
| |
Technically, the Shrew Soft VPN Client supports encrypted client certificate ''.p12'' containers, but you need to enter the container password every time (a real pain), so it makes more sense to use the unencrypted key with this product. | Technically, the Shrew Soft VPN Client supports encrypted client certificate ''.p12'' containers, but you need to enter the container password every time (a real pain), so it makes more sense to use the unencrypted key with this product. |
| |
To enable split tunneling, add the networks found on the LAN side of your Astlinux box to the list on the "Policy" tab (192.168.102.0/24 in this example). | To enable split tunneling, add the networks found on the LAN side of your Astlinux box to the list on the "Policy" tab (''192.168.102.0/24'' in this example). |
| |
{{:userdoc:ipsec-xauth-shrew-soft-config1.jpg?nolink|Shrew Soft Configuration}} | {{:userdoc:ipsec-xauth-shrew-soft-config1.jpg?nolink|Shrew Soft Configuration}} |