From owner-freebsd-security Wed Mar 13 12:27:42 2002 Delivered-To: freebsd-security@freebsd.org Received: from pythagoras.toolhouse.com (ip32.toolhouse.com [216.57.198.32]) by hub.freebsd.org (Postfix) with SMTP id DE16F37B6DB for ; Wed, 13 Mar 2002 12:26:43 -0800 (PST) Received: (qmail 96897 invoked from network); 13 Mar 2002 17:21:15 -0000 Received: from cameron.toolhouse.com (HELO toolhouse.com) (192.168.1.10) by 0 with SMTP; 13 Mar 2002 17:21:15 -0000 Message-ID: <3C8F7EA4.8050405@toolhouse.com> Date: Wed, 13 Mar 2002 08:30:28 -0800 From: "Cameron S. Watters" User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:0.9.9+) Gecko/20020311 X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-security Subject: IPSec (IKE negotiation) Content-Type: text/plain; charset=US-ASCII; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello all, NOTE: I don't subscribe, so please copy me in directly to any response. I'm trying to setup an IPSec using FreeBSD on my end. I'm having trouble, however, getting it to use the correct local IP address to originate the IKE negotiation from my end. The address that I'd like to be used is an alias of my external interface, however racoon seems to insist upon using the primary address assigned to the NIC. Adding a NIC is not an option. Is there any way to force racoon to use the correct external address? My second question would be: If the answer to the above is "no", then would using isakmpd instead of racoon help me solve this problem? --cam To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message