From owner-freebsd-security Sat Aug 26 14:36: 1 2000 Delivered-To: freebsd-security@freebsd.org Received: from elde.org (elde.org [195.204.143.185]) by hub.freebsd.org (Postfix) with ESMTP id 3649037B423 for ; Sat, 26 Aug 2000 14:35:54 -0700 (PDT) Received: by elde.org (Postfix, from userid 1002) id 959CB5EF47; Sat, 26 Aug 2000 23:35:47 +0200 (CEST) Date: Sat, 26 Aug 2000 23:35:47 +0200 From: Terje Elde To: John Lengeling Cc: freebsd-security@FreeBSD.ORG Subject: Re: Will PGPnet work with 4.1-STABLE IPSEC? Message-ID: <20000826233547.A35033@dlt.follo.net> References: <39A218F9.99C14E3D@raccoon.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <39A218F9.99C14E3D@raccoon.com>; from johnl@raccoon.com on Tue, Aug 22, 2000 at 01:08:57AM -0500 X-Mailer: Mutt http://www.mutt.org/ X-Editor: Vim http://www.vim.org/ X-IRC: ircii!epic4-2000 - prevail[1214] X-Goal: Exterminate All Rational Thought Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org * John Lengeling (johnl@raccoon.com) [000824 11:50]: > Has anyone tried to get PGPnet working with IPSEC/racoon under 4.1-STABLE? > > Since this is the first time that I am trying to get an IPSEC VPN client > package working with FreeBSD's IPSEC, are there any recommend VPN clients to > use other than PGPnet? AFAIK the racoon in the ports collection will only work with -current, which should not be used for security sensitive applications (ref: /dev/random ;) The problem isn't PGPNet. The problem is FreeBSD not supporting IKE. If you want to employ some other VPN, it's have to use static keying with IPSec, or not IPSec at all. PPTP might be a good choice ;) Terje To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message