From owner-freebsd-questions@FreeBSD.ORG Fri Oct 31 12:18:57 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 44CDD16A4CE for ; Fri, 31 Oct 2003 12:18:57 -0800 (PST) Received: from server1.shellworld.net (server1.shellworld.net [64.39.15.178]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0265C43F3F for ; Fri, 31 Oct 2003 12:18:56 -0800 (PST) (envelope-from tforrest@server1.shellworld.net) Received: from server1.shellworld.net (tforrest@localhost.shellworld.net [127.0.0.1])h9VKItwO003737 for ; Fri, 31 Oct 2003 14:18:55 -0600 (CST) (envelope-from tforrest@server1.shellworld.net) Received: (from tforrest@localhost) by server1.shellworld.net (8.12.8/8.12.8/Submit) id h9VKItCd003736; Fri, 31 Oct 2003 14:18:55 -0600 (CST) (envelope-from tforrest) Message-Id: <200310312018.h9VKItCd003736@server1.shellworld.net> From: "Tommy Forrest - KE4PYM" To: "freebsd-questions@freebsd.org" Date: Fri, 31 Oct 2003 15:18:58 -0500 Priority: Normal X-Mailer: PMMail98 with Bandit Tagger98 In-Reply-To: <200310311851.h9VIpwR29657@anon.securenym.net> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Tag: Bandit Tagger98 - Registered to : KE4PYM Subject: IPSec/VPN - Issues X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 31 Oct 2003 20:18:57 -0000 I am trying to setup an IPSec connection using http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/ipsec.html. When I get to the bit about gifconfig gif0 a.b.c.d w.x.y.z (though I'm using my real values) I get the following error: weedwhacker# gifconfig gif0 a.b.c.d w.x.y.z gifconfig: interface gif0 does not exist FreeBSD 4.8-Release. Relavant Items in my kernel config: pseudo-device gif # IPv6 and IPv4 tunneling #Turn on VPN options IPSEC options IPSEC_ESP Still no dice. Also, does Racoon support Aggressive mode? As well as PFS? Finally, the firewall administrator does not want to give me the IP address of his internal interface (I'm mapping to a 10.*.*.* network). Is this going to be a problem? Tommy Forrest - KE4PYM - tforrest@shellworld.net My two cents: A hangover is the wrath of grapes PGP Public Key Fingerprint: A6E9 D0CB 2ABC 520A 883D 8008 F660 364A