Date: Sun, 15 Oct 2000 10:35:39 -0400 (EDT) From: "Bill O'Connell" <bill@springwoodsys.com> To: "Bill O'Connell" <bill@springwoodsys.com>, freebsd-questions@freebsd.org Cc: fabrizzio.batista@lojasobino.com.br Subject: RE: Problems with IPSEC Message-ID: <XFMail.001015103539.bill@springwoodsys.com> In-Reply-To: <XFMail.001015100910.bill@springwoodsys.com>
next in thread | previous in thread | raw e-mail | index | archive | help
> IPSEC is in my Kernel. > > options IPSEC > options IPSEC_ESP > > All configurations looks like OK for me. When I execute setkey -f > /ect/ipsec.conf, nothing happens. I think thatīs everything is OK > but > when I try to access the other subnet ... Using netstat -sn, ipsec > have in all lines the zero value. My FreeBSD version is 4.1 in both > sides. > > Do you help me ???? > > Thanks in advance, > > Fabrizzio > > > File IPSEC.CONF: > > flush; > spdflush; > spdadd 192.168.1.0/24 128.1.1.0/24 any -P out ipsec > ah/tunnel/200.248.27.134-200.248.27.150/require; > spdadd 128.1.1.0/24 192.168.1.0/24 any -P in ipsec > ah/tunnel/200.248.27.150-200.248.27.134/require; > add 200.248.27.134 200.248.27.150 ah-old 0x10003 -m any -A > keyed-md5 > "this is the test"; > add 200.248.27.150 200.248.27.134 ah-old 0x10004 -m any -A > keyed-md5 > "this is the test"; What do the actual SAD and SPD entries look like, i.e. what does setkey -D and setkey -DP show? Need to see this on the other machine as well. Bill To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?XFMail.001015103539.bill>