1) Install openswan 1 yum -y install openswanyum -y install openswan 2) Clean up install defaults: 1 rm -r /etc/ipsec.d/*.db; rm -f /etc/ipsec.secrets; certutil -N -d /etc/ipsec.d/rm -r /etc/ipsec.d/*.db; rm -f /etc/ipsec.secrets; certutil -N -d /etc/ipsec.d/ (Leave passwords blank) 3)
NHRP with Spoke to Spoke Connectivity
NHRP can be used to provide an overlay VPN which dynamically initiates tunnels between nodes. Previously it was only possible to manually create tunnels which meant that it wasn’t scalable and the topology was restricted to a hub-spoke solution (realistically