From owner-freebsd-net Tue Nov 21 19:40:15 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail.snickers.org (snickers.org [216.126.90.2]) by hub.freebsd.org (Postfix) with ESMTP id 9A1CF37B479 for ; Tue, 21 Nov 2000 19:40:12 -0800 (PST) Received: by mail.snickers.org (Postfix, from userid 66) id AA71B3D35; Tue, 21 Nov 2000 22:40:11 -0500 (EST) Received: by asherah.dyndns.org (Postfix, from userid 701954) id B8C743450A; Tue, 21 Nov 2000 22:35:34 -0500 (EST) Date: Tue, 21 Nov 2000 22:35:33 -0500 From: Josh Tiefenbach To: Boris Cc: freebsd-net@FreeBSD.ORG Subject: Re: IPSEC Win2k Message-ID: <20001121223533.B43748@zipperup.org> References: <838997467.20001121113524@x-itec.de> <20001121124847.F37765@zipperup.org> <1563982125.20001122005041@x-itec.de> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <1563982125.20001122005041@x-itec.de>; from koester@x-itec.de on Wed, Nov 22, 2000 at 12:50:41AM -0800 Organization: Hah Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > spdadd 192.168.0.99/32 192.168.0.1 any -P out ipsec ^^^^^^^^^^^ This should probably be 192.168.0.1/32, but I dont think that has any effect on the prblem your seeing. > But racoon gives me a lot of error messages, i have added the messages > here. I really do not know what to do now -(((((((((( > > Snapshot: > 2000-11-22 02:53:09: isakmp_ident.c:700:ident_r1recv(): 192.168.0.1[500] peer transmitted Vendor ID. > 2000-11-22 02:53:09: vendorid.c:97:check_vendorid(): Vendor ID mismatch. Urk. I just grepped thru the logs I had, and I dont see any message like this. I'm not sure whats causing this, or if this is really your problem. However, I see a whole bunch of 'unacceptable proposal' messages in there. Are you sure that you've configured racoon to offer the same hash/encryption type as Win2k. It seems, i think, that your Win2k machine is requesting single-DES, while the FreeBSD machine only wants to do 3DES. josh -- This email has been brought to you by the letters U, U, C, and P To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message