From owner-freebsd-questions Thu Sep 5 6:37:38 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 96DE037B400 for ; Thu, 5 Sep 2002 06:37:36 -0700 (PDT) Received: from mx0.rambler.ru (mx0.rambler.ru [81.19.66.47]) by mx1.FreeBSD.org (Postfix) with ESMTP id 100A743E4A for ; Thu, 5 Sep 2002 06:37:35 -0700 (PDT) (envelope-from an.petrov@rambler.ru) Received: from mail1.rambler.ru (mail1.rambler.ru [217.73.192.85]) by mx0.rambler.ru (Postfix) with ESMTP id 45917437758 for ; Thu, 5 Sep 2002 17:35:35 +0400 (MSD) (envelope-from an.petrov@rambler.ru) Received: from [217.73.192.146] (account ) by mail1.rambler.ru (CommuniGate Pro WebUser 3.5.9) with HTTP id 1966139 for ; Thu, 05 Sep 2002 17:37:16 +0400 From: "Petrov Anatoly" Subject: Link Win2K AD domains over IPSec BSD tunnel To: freebsd-questions@freebsd.org X-Mailer: CommuniGate Pro Web Mailer v.3.5.9 Date: Thu, 05 Sep 2002 17:37:16 +0400 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="windows-1251"; format="flowed" Content-Transfer-Encoding: 8bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Hello. I have created a IPSec tunnel between FreeBSD and OpenBSD gateways in different sides using manual keying. It works fine.(ESP/tunnel with 3DES encryption). But when I begin Windows 2000 Active Directory installation (dcpromo), this one fails. Is there any possibility to bypass encryption for Kerberos packets (88/tcp, 88/udp) and some other ports with SSL that I can link two Windows 2000 AD domains via IPSec BSD tunnel? Regards, Anatoly Petrov Petrov_a@spb.mirantis.ru To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message