From owner-freebsd-questions@FreeBSD.ORG Tue Nov 2 19:32:26 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 74E1816A4CE for ; Tue, 2 Nov 2004 19:32:26 +0000 (GMT) Received: from infidel.fajita.org (62-249-210-170.adsl.entanet.co.uk [62.249.210.170]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3FDFE43D3F for ; Tue, 2 Nov 2004 19:32:22 +0000 (GMT) (envelope-from lewiz@fajita.org) Received: from black.fajita.org (black.fajita.org [192.168.0.13]) by infidel.fajita.org (8.13.1/8.13.1) with ESMTP id iA2JWOdo001412 for ; Tue, 2 Nov 2004 19:32:24 GMT (envelope-from lewiz@fajita.org) Received: (from lewiz@localhost) by black.fajita.org (8.13.1/8.13.1/Submit) id iA2JXlnl067818 for questions@freebsd.org; Tue, 2 Nov 2004 19:33:47 GMT (envelope-from lewiz) Date: Tue, 2 Nov 2004 19:33:47 +0000 From: Lewis Thompson To: FreeBSD-questions Message-ID: <20041102193347.GA67384@fajita.org> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="AhhlLboLdkugWU4S" Content-Disposition: inline X-GPG-Fingerprint: 90A4 939E 3847 A3E4 8103 2A48 22DA B428 542F ED3F X-GPG-Info: http://www.lewiz.org/~lewiz/pgpkey / horowitz.surfnet.nl User-Agent: Mutt/1.5.6i Subject: IPSEC (5.3-RC2) -- IKE traffic problem. X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 02 Nov 2004 19:32:26 -0000 --AhhlLboLdkugWU4S Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Hi, I'm attempting to get an encrypted tunnel going between two machines. Before I start pasting away my configs, tcpdump logs, racoon logs, etc. I would like to ask the following question: I've read that 5.2.1 had broken IPSEC, such that IKE traffic (port 500) was not bypassed (or something along those lines). A full thread can be found at http://groups.google.com/groups?hl=3Den&lr=3D&threadm=3D257C203C-8104-11D8-= 9902-00039303AB38_mac.com%40ns.sol.net&rnum=3D10&prev=3D/groups%3Fq%3Dan%25= 20acceptable%2520proposal%2520found%26hl%3Den%26lr%3D%26sa%3DN%26tab%3Dwg Does anybody know if this has now been resolved in 5.3RC2? Do I need to start doing special things to make IPSEC work? Or am I just a bonehead who has screwed his config up somehow? Thanks very much, -lewiz. --=20 I was so much older then, I'm younger than that now. --Bob Dylan, 1964. ------------------------------------------------------------------------ -| msn:lewiz@fajita.org | jabber:lewiz@jabber.org | url:www.lewiz.org |- --AhhlLboLdkugWU4S Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.6 (FreeBSD) iD8DBQFBh+EbItq0KFQv7T8RAoTBAJ0bfJKEPE8j6MOTsSmOoaXpHyARWwCgrZUu SXtHwi3sMAvTdq0FLTsPaj0= =3vOD -----END PGP SIGNATURE----- --AhhlLboLdkugWU4S--