Date: Sat, 21 May 2011 21:15:20 -0500 From: jhall@socket.net To: freebsd-net@freebsd.org Subject: IPSec Routing Message-ID: <20110522023056.D08F4106564A@hub.freebsd.org>
next in thread | raw e-mail | index | archive | help
I posted a similar question to the FreeBSD questions forum earlier, but the answer I received has only confused me more. So, I am asking a similar question here. Please excuse me if this is considered a cross post. I am using IPSec in transport mode to connect to a vendor's router. The connection is established and I am able to see the tunnels are established in racoon by the IPsec-SA established: ESP/Tunnel messages. And, my vendor has confirmed the connection is up on their end. What I am not understanding is how to add routes correctly when using transport mode. I have added the proper incoming/outgoing information using setkey. When I display the information using setkey -DP, the routes appear correct. I have defined one outbound route for the local private network to the remote private network and vice versa. When I try to ping the remote network, I do not receive any responses. Running a traceroute, I see the packet bounced back and forth between the external interface and the loopback adapter on my FBSD box. I am connecting to a Juniper router running the JUNOS operating system. This is the first time I have connected two networks together using transport mode as opposed to tunnel mode and I am really confused as to what I should be doing. The handbook information seems to deal only with tunnel mode. Thanks for your help. Jay
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20110522023056.D08F4106564A>