Most parts are based on the VPN-mini-HOWTO of Arpad Magosanyi and on the online resource of the book "Virtual Private Networks", an O'Reilly & Associates book by Charlie Scott, Mike Erwin, and Paul Wolfe found at http://www.vpn.outer.net, and transferred to using SSH2.
The distribution I work with is RedHat 5.2 but the description should be considered to work with other distributions too, maybe with slight differences in naming the files/directories.
I will not cover any points already stated in Arpad's VPN-mini-HOWTO like how to generate the ssh2 keys etc. but only the differences to a ssh1 configuration.
I AM NOT RESPONSIBLE FOR ANY DAMAGES INCURRED DUE TO ACTIONS TAKEN BASEDON THIS DOCUMENT!!!.This document is meant to help set up a VPN using SSH2.I am not, nor do I pretend to be, a security expert. This document isbased on my own knowledge which I got from reading various papers andfrom testing it on my own LAN. Although I tried to do my very best I give nowarranty that everything stated here is ok. Mistakes can occurr due to tooless knowledge or new situations arising which I didnīt know yet.Thanks to the Linux community to make it possible to find so much goodinformation on this item!Please, I am writing this to help get people acquainted with this subject,and I am not ready to stake my life on the accuracy of what is in here.
Unless otherwise stated, Linux HOWTO documents are copyrighted by theirrespective authors. Linux HOWTO documents may be reproduced and distributed inwhole or in part, in any medium physical or electronic, as long as thiscopyright notice is retained on all copies. Commercial redistribution isallowed and encouraged; however, the author would like to be notified of anysuch distributions.All translations, derivative works, or aggregate works incorporating anyLinux HOWTO documents must be covered under this copyright notice. That is,you may not produce a derivative work from a HOWTO and impose additionalrestrictions on its distribution. Exceptions to these rules may be grantedunder certain conditions; please contact the Linux HOWTO coordinator. In short, I wish to promote dissemination of this information through asmany channels as possible. However, I do wish to retain copyright on theHOWTO document, and would like to be notified of any plans to redistributethe HOWTO.If you have any questions relating to this documents, pleasecontact Sandro Poppi at mailto:spoppi@gmx.de