From owner-freebsd-questions@FreeBSD.ORG Wed Dec 21 23:13:40 2005 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E95F716A41F for ; Wed, 21 Dec 2005 23:13:40 +0000 (GMT) (envelope-from volker@vwsoft.com) Received: from gwfra.elbekies.net (tce71.tce85.de [195.145.102.20]) by mx1.FreeBSD.org (Postfix) with ESMTP id D010C43D5D for ; Wed, 21 Dec 2005 23:13:31 +0000 (GMT) (envelope-from volker@vwsoft.com) Received-SPF: pass (gwfra.elbekies.net: domain of vwsoft.com designates 213.6.211.166 as permitted sender) client-ip=213.6.211.166; envelope-from=volker@vwsoft.com; helo=mail.vtec.ipme.de; Received: from mail.vtec.ipme.de (Ad3a6.a.pppool.de [213.6.211.166]) by gwfra.elbekies.net (Postfix) with ESMTP id 0A23B17036 for ; Thu, 22 Dec 2005 00:13:20 +0100 (CET) Received: from [192.168.16.3] (cesar.sz.vwsoft.com [192.168.16.3]) by mail.vtec.ipme.de (Postfix) with ESMTP id 43A525C11; Wed, 21 Dec 2005 23:58:56 +0100 (CET) Message-ID: <43A9DDC3.7050506@vwsoft.com> Date: Wed, 21 Dec 2005 23:57:07 +0100 From: Volker User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.7.10) Gecko/20050716 Thunderbird/1.0.6 Mnenhy/0.6.0.101 X-Accept-Language: en-us, en MIME-Version: 1.0 To: szabszi@goodwill.hu References: <20051221120121.E87F816A422@hub.freebsd.org> In-Reply-To: <20051221120121.E87F816A422@hub.freebsd.org> X-Enigmail-Version: 0.93.0.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-VWSoft-MailScanner: Found to be clean X-TarmacIntl-MailScanner: Found to be clean X-MailScanner-From: volker@vwsoft.com Cc: freebsd-questions@freebsd.org Subject: Re: multiple racoon connections X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 21 Dec 2005 23:13:41 -0000 On 2005-12-21 13:01, szabszi@goodwill.hu wrote: > Hi There, > > I try to establish multiple connections with racoon/ipsec/gifX > configuration. > However, I can only establish 1 connection. > I think racoon could manage multiple connections, but I don't know what > should I do to get racoon working. > I got FreeBSD 5.4 Stable. > > any idea? > > sz sz, racoon does nothing but the key exchange. If you're able to establish one connection with IPSec, you should go with as many connections as your CPU power is able to provide. If you're looking for any help, you should post your setup and some pieces of config files. Without that, anybody here may tell stories but it won't help you. Possible reasons: racoon setup wrong, firewall problem but most likey SPD typos. I'm using IPSec tunnels between several gateway systems running FreeBSD 5.4 and FreeBSD _is_ able to run more than one IPSec connection at a time. However I've experienced trouble while running gif tunnels through an IPSec connection on FreeBSD 5.x (also tested on 6.x). The session stalled as soon as more traffic went through the GIF tunnel. IPSec itself worked fine. Greetings, Volker