Date: Fri, 19 Dec 2003 06:32:32 -0800 From: Nathan Kay <mcnate@numenor.net> To: "Crist J. Clark" <cristjc@comcast.net> Cc: current@freebsd.org Subject: Re: Possible IPsec Trouble in 5.2RC? Message-ID: <20031219143232.GA91798@numenor.net> In-Reply-To: <20031219064932.GA94971@blossom.cjclark.org> References: <20031219064932.GA94971@blossom.cjclark.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, Dec 18, 2003 at 10:49:32PM -0800, Crist J. Clark wrote: > IPsec does work, however. When I manually load up the SAD with > setkey(8), the ESP tunnel comes up and everything is fine. Confirmed, IKE no longer works for my setup either, while manual keying does. > I think the problem is that the IKE traffic, 500/udp, is not bypassing > the IPsec processing like it should. That's what looked like was going on in my setup as well. -- Nathan Kay Numenorean Networks http://www.numenor.net PGP Public Key: http://www.numenor.net/~mentat/pgp.asc "Unix is like a Vorlon: It's incredibly powerful, gives terse, cryptic answers, and has a lot of things going on in the background."
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20031219143232.GA91798>