From owner-freebsd-questions Wed Sep 4 15: 8:34 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DB62637B400 for ; Wed, 4 Sep 2002 15:08:31 -0700 (PDT) Received: from f2.active-area.com (ti131110a080-0265.bb.online.no [80.212.101.9]) by mx1.FreeBSD.org (Postfix) with ESMTP id BA9A043E42 for ; Wed, 4 Sep 2002 15:08:25 -0700 (PDT) (envelope-from kenneth@karoliussen.net) Received: from active-area.com (localhost.active-area.com [127.0.0.1]) by f2.active-area.com (Postfix) with SMTP id 65F224146 for ; Thu, 5 Sep 2002 00:08:23 +0200 (CEST) Received: from kekar.lunatic ([192.168.1.2]) (SquirrelMail authenticated user kenneth) by www.active-area.com with HTTP; Thu, 5 Sep 2002 00:08:23 +0200 (CEST) Message-ID: <1733.192.168.1.2.1031177303.squirrel@www.active-area.com> Date: Thu, 5 Sep 2002 00:08:23 +0200 (CEST) Subject: IPSEC and setkey From: "Kenneth Karoliussen" To: X-Priority: 3 Importance: Normal X-MSMail-Priority: Normal X-Mailer: SquirrelMail (version 1.2.7) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Hi, I've currently successfully configured a FreeBSD VPN connection to our Intel Netstructure VPN service. There seems to be a few issues regarding the SA key negotiation when it's required. Racoon logs the IPSEC-SA connection as established after a disconnection has occured. When using tcpdump I see that ESP packages are transferred with no response from the other end. If I flush the SA db with setkey -F and set it to its initial state (from my ipsec.conf) the packages are transmitted and decryptet correctly. Anyone know what's the problem may be? Best, Kenneth Karoliussen To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message