From owner-freebsd-security Wed Mar 13 14:35:13 2002 Delivered-To: freebsd-security@freebsd.org Received: from pythagoras.toolhouse.com (ip32.toolhouse.com [216.57.198.32]) by hub.freebsd.org (Postfix) with SMTP id 4C90937B417 for ; Wed, 13 Mar 2002 14:35:09 -0800 (PST) Received: (qmail 85511 invoked from network); 12 Mar 2002 19:03:01 -0000 Received: from cameron.toolhouse.com (HELO toolhouse.com) (192.168.1.10) by 0 with SMTP; 12 Mar 2002 19:03:01 -0000 Message-ID: <3C8E44F8.9040302@toolhouse.com> Date: Tue, 12 Mar 2002 10:12:08 -0800 From: "Cameron S. Watters" User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:0.9.9+) Gecko/20020311 X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-security@freebsd.org Subject: IPSec (IKE negotiation) Content-Type: text/plain; charset=US-ASCII; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello all, NOTE: I don't subscribe, so please copy me in directly to any response. I'm trying to setup an IPSec using FreeBSD on my end. I'm having trouble, however, getting it to use the correct local IP address to originate the IKE negotiation from my end. The address that I'd like to be used is an alias of my external interface, however racoon seems to insist upon using the primary address assigned to the NIC. Adding a NIC is not an option. Is there any way to force racoon to use the correct external address? My second question would be: If the answer to the above is "no", then would using isakmpd instead of racoon help me solve this problem? --cam To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message