From owner-freebsd-questions@FreeBSD.ORG Mon Jan 12 09:10:51 2009 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 59ECB106564A for ; Mon, 12 Jan 2009 09:10:51 +0000 (UTC) (envelope-from perryh@pluto.rain.com) Received: from agora.rdrop.com (agora.rdrop.com [199.26.172.34]) by mx1.freebsd.org (Postfix) with ESMTP id 35DED8FC0A for ; Mon, 12 Jan 2009 09:10:51 +0000 (UTC) (envelope-from perryh@pluto.rain.com) Received: from agora.rdrop.com (66@localhost [127.0.0.1]) by agora.rdrop.com (8.13.1/8.12.7) with ESMTP id n0C9AowI062110 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Mon, 12 Jan 2009 01:10:50 -0800 (PST) (envelope-from perryh@pluto.rain.com) Received: (from uucp@localhost) by agora.rdrop.com (8.13.1/8.12.9/Submit) with UUCP id n0C9AovP062109; Mon, 12 Jan 2009 01:10:50 -0800 (PST) Received: from fbsd61 by pluto.rain.com (4.1/SMI-4.1-pluto-M2060407) id AA07517; Mon, 12 Jan 09 01:00:28 PST Date: Mon, 12 Jan 2009 01:02:34 -0800 From: perryh@pluto.rain.com To: stacey@vickiandstacey.com Message-Id: <496b072a.ugr0wDBif8SM2vLD%perryh@pluto.rain.com> References: <49589883.lhmPNVeBMeI7aDqo%perryh@pluto.rain.com> <49618959.ytDnPW+y0ehAb8CV%perryh@pluto.rain.com> <20090111122946.GA1484@thor.vickiandstacey.com> <496ab55e.Ic0zjSbbhqUZJ9Uq%perryh@pluto.rain.com> <20090112075118.GD1484@thor.vickiandstacey.com> In-Reply-To: <20090112075118.GD1484@thor.vickiandstacey.com> User-Agent: nail 11.25 7/29/05 Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Cc: freebsd-questions@freebsd.org Subject: Re: FIXED: vpnc connects, but does not work X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 12 Jan 2009 09:10:51 -0000 > ... I do have a Linux OS that I have access > to that strangely does use vpnc successfully. That may help quite a bit. You can use something like tcpdump or wireshark on the FreeBSD system to monitor the traffic between the Linux system and the Cisco while connecting and doing something simple like pinging the inside nameserver, then reverse roles and use the Linux system to monitor the traffic between FreeBSD and the Cisco while connecting and attempting to do the same simple thing. You won't be able to see what's inside the IPSEC-encrypted packets, but you can at least see how many of what size are sent in each direction. This may provide some clues as to what is going wrong.