From owner-freebsd-questions@FreeBSD.ORG Sun Apr 3 16:42:24 2005 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 22B5816A4CE for ; Sun, 3 Apr 2005 16:42:24 +0000 (GMT) Received: from saturn.pcs.ms (235.178.186.195.cust.bluewin.ch [195.186.178.235]) by mx1.FreeBSD.org (Postfix) with ESMTP id B7F5943D2D for ; Sun, 3 Apr 2005 16:42:22 +0000 (GMT) (envelope-from martin@saturn.pcs.ms) Received: from saturn.pcs.ms (localhost [127.0.0.1]) by saturn.pcs.ms (8.12.11/8.12.11) with ESMTP id j33GkJI7050229; Sun, 3 Apr 2005 18:46:19 +0200 (CEST) (envelope-from martin@saturn.pcs.ms) Received: (from martin@localhost) by saturn.pcs.ms (8.12.11/8.12.11/Submit) id j33GkJqO050224; Sun, 3 Apr 2005 18:46:19 +0200 (CEST) (envelope-from martin) Date: Sun, 3 Apr 2005 18:46:19 +0200 From: Martin Schweizer To: freebsd-questions@freebsd.org Message-ID: <20050403164619.GQ82075@saturn.pcs.ms> Mail-Followup-To: freebsd-questions@freebsd.org Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="vJnATpogyuudK3Na" Content-Disposition: inline User-Agent: Mutt/1.4i Organization: PC-Service M. Schweizer GmbH, CH-8608 Bubikon, Switzerland X-PGP-Key: http://www.pc-service.ch/pgp/public_key.asc X-Fingerprint: EC21 CA4D 5C78 BC2D 73B7 10F9 C1AE 1691 D30F D239 Subject: VPN with setkey X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: Martin Schweizer List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 03 Apr 2005 16:42:24 -0000 --vJnATpogyuudK3Na Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Hello I've been run in troubles with setkey. My goal is to etablish a vpn connect= ion=20 with setkey/racoon to an vpn box from ZyXEL (Prestige 600series). My setup = is: notebook ---> FreeBSD gateway/firewall ---> Internet -----> ZyXEL Notebook: 192.168.50.55 FreeBSD gatewy/firewall: 192.168.50.1 ZyXEL: host.abc.net (internal net: 192.168.1.0/24) I can ping ZyXEL make vpn connections with a Windows client without problem= s.=20 I config the ipsec.conf with these options: spdadd -n 192.168.50.0/24 192.168.1.0/24 ipencap -P out ipsec esp/tunnel/19= 2.168.50.55-host.abc.net/require; spdadd 192.168.1.0/24 192.168.50.0/24 ipencap -P in ipsec esp/tunnel/host.a= bc.net-192.168.50.55/require; and this I get back from setkey: notebook# setkey -f ipsec.conf libipsec: invalid IP address while parsing "host.abc.net" line 1: hostname nor servname provided, or not known at [ out ipsec esp/tun= nel/192.168.50.55-host.abc.net/require parse failed, line 1. What I'm doing wrong? --=20 Regards Martin Schweizer PC-Service M. Schweizer GmbH; Bannholzstrasse 6; CH-8608 Bubikon Tel. +41 55 243 30 00; Fax: +41 55 243 33 22; http://www.pc-service.ch; public key : http://www.pc-service.ch/pgp/public_key.asc;=20 fingerprint: EC21 CA4D 5C78 BC2D 73B7 10F9 C1AE 1691 D30F D239; --vJnATpogyuudK3Na Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (FreeBSD) iD8DBQFCUB3bwa4WkdMP0jkRAmFiAKDt86pkxBvA/jL7ogLSvUwYEgRJ7wCeIMMU wcI6rk4espqYjk45bHgCpIs= =nfZu -----END PGP SIGNATURE----- --vJnATpogyuudK3Na--