Hi, I'm evaluating Astaro Secure Gateway for a firewall for our network. It implements IPSec VPN. They do provide windows client, but unfortunately they assume that as IPSec is already part of the kernel 2.6.x, and a linux users are more powerful, I can not find any instructions how to setup a linux client. On their message boards the only think I found was - ask in the forums for your distro - so here I am :) So, I'm playing with ipsec-tools package here. I have installed it, as well as Kvpnc frontend. And here I get into the dark, I still can not figure out how to configure it to work. Unfortunately, the docs for racoon and racoon-tool are like foreign language for me :) Does anybody have an experience in setting racoon to connect to IPSec VPN? A sample setup, which achieves the following will be very helpful: Cer used: X.509 My machine IP (client): xxx.xxx.xxx.xxx VPN entry point (ext. IP): yyy.yyy.yyy.yyy The internal network behind the firewall is: zzz.zzz.zzz.0/24 (this is the network I want to access). As far as I understand (and reading the docs for configuring the VPN gateway), I have to have some virtual network for the connected clients as well, and to assign an IP from that network to every client/key. Lets say this network is vvv.vvv.vvv.0/24. How should I prepare the racoon-tool.conf to connect my machine, so I can access the internal (VPN-ed) network. Any links/docs which can explain this in a more simplistic way will be highly appreciated. All documents I have found during my 3 day research are much more complicated, and I just can not figure it out. Thanks in advance for any hints. Cheers -- -- Svetoslav Milenov (Sunny)