From owner-freebsd-security  Mon May  8  1: 3:38 2000
Delivered-To: freebsd-security@freebsd.org
Received: from tld.follo.net (tld.follo.net [195.204.143.184])
	by hub.freebsd.org (Postfix) with ESMTP id 900D737B5F5
	for <freebsd-security@FreeBSD.ORG>; Mon,  8 May 2000 01:03:27 -0700 (PDT)
	(envelope-from terje@elde.net)
Received: by tld.follo.net (Postfix, from userid 1001)
	id D6B5E7D79; Mon,  8 May 2000 10:03:08 +0200 (CEST)
Date: Mon, 8 May 2000 10:03:07 +0200
From: Terje Elde <telde@online.no>
To: freebsd-security@FreeBSD.ORG
Subject: Re: ipsec fbsd <-> win ?
Message-ID: <20000508100307.C1302@tld.follo.net>
References: <20000507142854.A9870@r4k.net>
Mime-Version: 1.0
Content-Type: application/pgp; x-action=sign; format=text
Content-Disposition: inline; filename="msg.pgp"
User-Agent: Mutt/1.1.14i
In-Reply-To: <20000507142854.A9870@r4k.net>; from _@r4k.net on Sun, May 07, 2000 at 02:28:54PM +0200
X-Editor: Vim http://www.vim.org/
X-IRC: ircii!epic4-2000 - prevail[1214]
X-Goal: Exterminate All Rational Thought
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

* Stephanie Wehner (_@r4k.net) [000507 17:16]:
> Does anyone have any experience concerning the interaction of the current 
> freebsd ipsec and the ipsec for win2k as its mentioned on the microsoft 
> site ? Unfortunately I don't have any win2k around myself to test it.

Chances are you'll have some problems until racoon is up and running. I must
admit I have not checked the win2k version out as well as I should have, but
assuming it's been implemented with just a bit of clue, it will not rely on
the same encryption keys for a huge amount of time/data, and thus you'll need
racoon for the dynamic keys.

Unless I'm misunderstanding something that is.

You might want to try Maikel Verheijen's patched version, which he's made
available at http://home.worldonline.nl/~maikel/racoon.tar.gz

Terje
- -- 
Terje Elde   | Yes Interactive AS | voice: +47 64 85 52 00
terje@yes.no | http://www.yes.no/ | fax:   +47 64 85 52 01
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.1 (FreeBSD)
Comment: For info see http://www.gnupg.org

iD8DBQE5FnS78HLgLrwmRg0RAvP7AJ9O+ZDkp8D1aJZ1Bg3GCLBOTW23yQCgkJzo
dGxIM6NKbQNF+p7bZ6/whDI=
=phU4
-----END PGP SIGNATURE-----


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message