Date: Thu, 14 Oct 1999 11:25:57 +0200 From: Pierre Beyssac <beyssac@enst.fr> To: Patrick Bihan-Faou <patrick@mindstep.com>, Philip Hallstrom <philip@adhesivemedia.com>, freebsd-security@FreeBSD.ORG Subject: Re: pipsecd example? Message-ID: <19991014112557.B37800@enst.fr> In-Reply-To: <029001bf15dc$33f44c60$190aa8c0@local.mindstep.com>; from Patrick Bihan-Faou on Wed, Oct 13, 1999 at 08:36:49PM -0400 References: <Pine.BSF.4.10.9910131518590.26644-100000@mug.adhesivemedia.com> <029001bf15dc$33f44c60$190aa8c0@local.mindstep.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Oct 13, 1999 at 08:36:49PM -0400, Patrick Bihan-Faou wrote: > Your imagination... As long as one end's remote key(s) is the other end's > local key(s). There is a mistake in the sample configuration file. I will > correct it sometime... You're quite right, I realized that a few weeks ago: diff -r1.2 -r1.3 42c42 < sa ipesp spi=1001 enc=blowfish_cbc ekey=d00db00fd00d00d00db00fd00dc00e dest=5.6.7.8 --- > sa ipesp spi=1001 enc=blowfish_cbc ekey=d00db00fd00d00d00db00fd00dc00e Sorry about the confusion. I really have to write that manpage... > ethernet wire), it has a software one (pipsecd). BTW, this also means that > it needs an IP address on the network you chose as the "tunnel" network. Right. It's a good idea to use a RFC 1918 network number if you don't want to change your subnetting or your addressing plan. -- Pierre Beyssac pb@enst.fr To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19991014112557.B37800>