From owner-freebsd-security Tue Oct 10 18:13:10 2000 Delivered-To: freebsd-security@freebsd.org Received: from lynx.aba.net.au (lynx.esec.com.au [203.21.84.1]) by hub.freebsd.org (Postfix) with SMTP id EDCCE37B671 for ; Tue, 10 Oct 2000 18:13:01 -0700 (PDT) Received: (qmail 12618 invoked from network); 11 Oct 2000 01:12:54 -0000 Received: from swun.esec.com.au (HELO eSec.com.au) (203.21.85.207) by lynx.esec.com.au with SMTP; 11 Oct 2000 01:12:54 -0000 Message-ID: <39E3C11D.6BB4D06F@eSec.com.au> Date: Wed, 11 Oct 2000 12:23:41 +1100 From: Sam Wun Organization: eSec X-Mailer: Mozilla 4.74 [en] (X11; U; Linux 2.2.12 i386) X-Accept-Language: en MIME-Version: 1.0 Cc: freebsd-security@freebsd.org, comp.unix.bsd.openbsd.misc@eSec.com.au Subject: Connect Ipsec between openbsd and freebsd References: <00b301c032d3$9cd97880$1aa7dac3@krovatka.ru> Content-Type: text/plain; charset=gb2312 Content-Transfer-Encoding: 7bit Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, I want to connect ipsec from openbsd to a freebsd box thru some tunnels. I know how to setup ipsec in freebsd by recomipling the kernel and using spdadd to define policies with setkey. It works fine between freebsd boxes. But not sure how to connect it to other different systems, for example, openBSD. In openBSD, isakmpd is used for setting ipsec. I konw we can use certificate with isakmpd in OpenBSD. What about in FreeBSD? What should this 2 systems comproised before the ipsec tunnel can be established between them? Thanks Sam. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message