From owner-freebsd-questions Sun Mar 11 11:14:49 2001 Delivered-To: freebsd-questions@freebsd.org Received: from smtp-server1.tampabay.rr.com (smtp-server1.tampabay.rr.com [65.32.1.34]) by hub.freebsd.org (Postfix) with ESMTP id 4011737B718 for ; Sun, 11 Mar 2001 11:14:42 -0800 (PST) (envelope-from meconlen@obfuscated.net) Received: from clarity (24129168hfc216.tampabay.rr.com [24.129.168.216]) by smtp-server1.tampabay.rr.com (8.11.2/8.11.2) with SMTP id f2BGOk025804; Sun, 11 Mar 2001 11:24:48 -0500 (EST) From: "Michael Conlen" To: "Alexander" , Subject: RE: IPSEC Date: Sun, 11 Mar 2001 11:19:13 -0500 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 In-reply-to: Importance: Normal Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG I've found mpd works pretty well. Read the instructions, print them out, read the printed copy, then read again taking notes, and you will be OK. Having not done this it was a bit of a pain to setup, but once I read everything it went well :) I can do IPSec and PPTP (if I really want to) tunnels. -- Groove On Dude Michael Conlen Obfuscated Networking meconlen@obfuscated.net > -----Original Message----- > From: owner-freebsd-questions@FreeBSD.ORG > [mailto:owner-freebsd-questions@FreeBSD.ORG]On Behalf Of Alexander > Sent: Sunday, March 11, 2001 6:30 AM > To: freebsd-questions@freebsd.org > Subject: IPSEC > > > What is the usual way to create tunnel between 2 gateways ? > I've read some howtos that I found on some bsd sites and there is > said about encrypting already made tunnel but nowhere is said how to > create that tunnel ? (like brining up tun0 devices) > I also found howto about pipsecd but it doesn't work. > Somehow when I compile "options IPSEC" in the kernel the pipsecd doesn't > want to run. It tells me that it can't get SOCK_RAW > And when I remove IPSEC from the kernel it doesn't work propertly. > I configure both sides of the tunnel and run pipsecd and it tells me that > hmac authorization failed. (and the configs on both sides are correct, > keys are correct, I took them from a working howto) > I also read about making tunnel using ppp and encrypting it with ssh but > it sux. There should be other way because there is alot of howtos about > IPSEC and the pipsecd and ppp with ssh doesn't include it. ( I mean > setting your keys with setkey and running racoon etc..) > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message