From owner-freebsd-ports Sat May 12 8:40: 8 2001 Delivered-To: freebsd-ports@hub.freebsd.org Received: from freefall.freebsd.org (freefall.freebsd.org [216.136.204.21]) by hub.freebsd.org (Postfix) with ESMTP id 3F68D37B43E for ; Sat, 12 May 2001 08:40:01 -0700 (PDT) (envelope-from gnats@FreeBSD.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.11.1/8.11.1) id f4CFe1r18843; Sat, 12 May 2001 08:40:01 -0700 (PDT) (envelope-from gnats) Received: from isbalham.ist.co.uk (isbalham.ist.co.uk [192.31.26.1]) by hub.freebsd.org (Postfix) with ESMTP id 785B037B424 for ; Sat, 12 May 2001 08:35:53 -0700 (PDT) (envelope-from rb@seagoon.gid.co.uk) Received: (from uucp@localhost) by isbalham.ist.co.uk (8.11.1/8.11.1) with UUCP id f4CFZlc11866 for FreeBSD-gnats-submit@freebsd.org; Sat, 12 May 2001 16:35:47 +0100 (BST) (envelope-from rb@seagoon.gid.co.uk) Received: (from root@localhost) by seagoon.gid.co.uk (8.9.3/8.9.3) id QAA22414; Sat, 12 May 2001 16:32:38 +0100 (BST) (envelope-from rb) Message-Id: <200105121532.QAA22414@seagoon.gid.co.uk> Date: Sat, 12 May 2001 16:32:38 +0100 (BST) From: Bob Bishop Reply-To: rb@seagoon.gid.co.uk To: FreeBSD-gnats-submit@freebsd.org X-Send-Pr-Version: 3.2 Subject: ports/27285: SKIP doesn't work on 4.x Sender: owner-freebsd-ports@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org >Number: 27285 >Category: ports >Synopsis: SKIP doesn't work on 4.x >Confidential: no >Severity: serious >Priority: medium >Responsible: freebsd-ports >State: open >Quarter: >Keywords: >Date-Required: >Class: sw-bug >Submitter-Id: current-users >Arrival-Date: Sat May 12 08:40:00 PDT 2001 >Closed-Date: >Last-Modified: >Originator: Bob Bishop >Release: FreeBSD 4.2-RELEASE i386 >Organization: GID ltd >Environment: Nothing special. SKIP set up with SAFER for keys and traffic, MD5 for authentication and using tunnel mode. >Description: SKIP appears to work perfectly (fetches remote host's certificate properly, generates packets understood by remote host) except that incoming proto 57 packets are always dropped, skiplog says: : Warning: () failed authentication Its certificate/key id may be invalid >How-To-Repeat: Set SKIP up with remote keys etc, ping remote host. Observe protocol 57 traffic with tcpdump, monitor skiplog and SKIP encription stats. >Fix: Dunno. Playing with MTU on the SKIP-enabled port doesn't seem to help. >Release-Note: >Audit-Trail: >Unformatted: To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ports" in the body of the message