From owner-freebsd-security Mon Sep 25 19:16:40 2000 Delivered-To: freebsd-security@freebsd.org Received: from lynx.aba.net.au (lynx.esec.com.au [203.21.84.1]) by hub.freebsd.org (Postfix) with SMTP id 5373637B43F for ; Mon, 25 Sep 2000 19:16:32 -0700 (PDT) Received: (qmail 14902 invoked from network); 26 Sep 2000 02:16:30 -0000 Received: from swun.esec.com.au (HELO eSec.com.au) (203.21.85.207) by lynx.esec.com.au with SMTP; 26 Sep 2000 02:16:30 -0000 Message-ID: <39D00927.E28A4D13@eSec.com.au> Date: Tue, 26 Sep 2000 13:25:43 +1100 From: Sam Wun Organization: eSec X-Mailer: Mozilla 4.74 [en] (X11; U; Linux 2.2.12 i386) X-Accept-Language: en MIME-Version: 1.0 To: Kris Kennaway Cc: "'freebsd-security@freebsd.org'" Subject: Re: IPsec block my ssh remote login. References: Content-Type: text/plain; charset=gb2312 Content-Transfer-Encoding: 7bit Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org but I can't find ipsec_file when I man rc.conf Besides, what do I need to modify the /etc/rc.network file? Thanks Sam. Kris Kennaway wrote: > On Tue, 26 Sep 2000, Sam Wun wrote: > > > This makes much more sense now. Thanks > > Another question is, do I need to setup ipsec in rc.conf file like ipfilter just > > for convinently setting the IPSEC up when the machine in the booting stage? If > > so, I will need to modify the rc.network to reflect the change? > > rc.conf includes the option: > > ipsec_file="/etc/ipsec.conf" # Name of config file for setkey > > which does the obvious thing. You may also like to enable other rc.conf > options. > > Kris To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message