From owner-freebsd-net@FreeBSD.ORG Wed Jul 15 03:01:57 2009 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id E1186106564A for ; Wed, 15 Jul 2009 03:01:57 +0000 (UTC) (envelope-from rascal1981@gmail.com) Received: from mail-vw0-f172.google.com (mail-vw0-f172.google.com [209.85.212.172]) by mx1.freebsd.org (Postfix) with ESMTP id 8FD5D8FC15 for ; Wed, 15 Jul 2009 03:01:57 +0000 (UTC) (envelope-from rascal1981@gmail.com) Received: by vwj2 with SMTP id 2so2924082vwj.3 for ; Tue, 14 Jul 2009 20:01:56 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:content-type; bh=GZMa70NCowJG5cOqAYWzHANigE1kT/K0DSw+D7jayKg=; b=G+yNPJX4Mu/4+CyD0HI0hBvPWprnt8uc2cFWUo924G9YTBI2MlgMxfjCAHPV8TJTmZ cBej79FPJYuuFxfClo84tqD0Hr7DlTnKI92tmrZxaPoQHSMUgYzzEYq2Dkm4nJTaCGsa rizQ9RVE4gCgebRFKPP27Q/MyUeeUUG1VE+XY= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; b=GpOfmUtNCSVHEy8Ta70HFKAH+CM9xCdceGq6FPDJ24rk1x34BByvGTH67vtmihOGJm WojRSsL36fUVsM3SkvRsMlsb5xS7jL6QfU5nugwunthv1CkIus1a/DGFSK4Ecy9ZgKzI 9DKyevSJrBx4kuZ4dAT6isLZIVfHAPARAp0HQ= MIME-Version: 1.0 Received: by 10.220.96.67 with SMTP id g3mr10026412vcn.63.1247626916744; Tue, 14 Jul 2009 20:01:56 -0700 (PDT) In-Reply-To: <20090715021251.GV6896@verio.net> References: <3228ef7c0907130809n29566514xb2c1f522e1da8a3f@mail.gmail.com> <20090714134131.GA23925@traktor.dnepro.net> <3228ef7c0907140918i5d90dc44q995a4210f2767f9a@mail.gmail.com> <20090715001514.GU6896@verio.net> <3228ef7c0907141843s30df148eu2c6c64acd7748029@mail.gmail.com> <20090715021251.GV6896@verio.net> Date: Tue, 14 Jul 2009 23:01:56 -0400 Message-ID: <3228ef7c0907142001y650892b3w696576647086ba38@mail.gmail.com> From: rascal To: rascal , freebsd-net@freebsd.org Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: Subject: Re: question regarding IPSEC Setup X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 15 Jul 2009 03:01:58 -0000 very good then, I'll have to uninstall racoon2/install the ipsectools. I must have missed when I installed ipsectools but no worries. If I could ask one more favor; what does your cisco config look like that would match one of these? I have got mine configed based on someone else's tunnel specs and while I am sure they are comparable I wanted to make sure I wasn't missing anything. I was trying to go off of this: http://www.derkeiler.com/Mailing-Lists/FreeBSD-Security/2002-09/11533.html But it's a little outdated and wanted to make sure I was doing it correctly. It sounds like I am on the right path for this, just a few more pieces to go! Thanks very much again for the help! On Tue, Jul 14, 2009 at 10:12 PM, David DeSimone wrote: > rascal wrote: > > > > I have the racoon2 package; does this make a big difference or do > > these configs work close to the same? > > I did not have any luck using racoon2 because apparently it does not > interoperate well with older IPSEC implementations. At least, it did > not a couple of years ago when I set up my IPSEC. > > What you probably want is the security/ipsec-tools port, which contains > the original racoon IKE daemon. > > -- > David DeSimone == Network Admin == fox@verio.net > "I don't like spinach, and I'm glad I don't, because if I > liked it I'd eat it, and I just hate it." -- Clarence Darrow > > > This email message is intended for the use of the person to whom it has > been sent, and may contain information that is confidential or legally > protected. If you are not the intended recipient or have received this > message in error, you are not authorized to copy, distribute, or otherwise > use this message or its attachments. Please notify the sender immediately by > return e-mail and permanently delete this message and any attachments. > Verio, Inc. makes no warranty that this email is error or virus free. Thank > you. >