From owner-freebsd-hackers@FreeBSD.ORG Sat Nov 24 15:37:35 2007 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 5B22216A468 for ; Sat, 24 Nov 2007 15:37:35 +0000 (UTC) (envelope-from auryn@zirakzigil.org) Received: from mail.giulioferro.it (mail.giulioferro.it [85.18.102.52]) by mx1.freebsd.org (Postfix) with ESMTP id 25BA913C448 for ; Sat, 24 Nov 2007 15:37:35 +0000 (UTC) (envelope-from auryn@zirakzigil.org) Received: from localhost (localhost [127.0.0.1]) by mail.giulioferro.it (Postfix) with ESMTP id 8C95E33C42; Sat, 24 Nov 2007 16:39:36 +0100 (CET) X-Virus-Scanned: amavisd-new at giulioferro.it Received: from mail.giulioferro.it ([127.0.0.1]) by localhost (aurynwork1sv1.giulioferro.it [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kKbTXgW4b6rk; Sat, 24 Nov 2007 16:39:32 +0100 (CET) Received: from aurynmob2.giulioferro.it (mail.zirakzigil.org [82.63.178.63]) (Authenticated sender: gferro@giulioferro.it) by mail.giulioferro.it (Postfix) with ESMTP id 4BD9833C41; Sat, 24 Nov 2007 16:39:32 +0100 (CET) Message-ID: <47484525.8020002@zirakzigil.org> Date: Sat, 24 Nov 2007 16:37:09 +0100 From: Giulio Ferro User-Agent: Thunderbird 2.0.0.5 (X11/20070724) MIME-Version: 1.0 To: VANHULLEBUS Yvan References: <474830F9.90305@zirakzigil.org> <20071124150854.GA3451@zen.inc> In-Reply-To: <20071124150854.GA3451@zen.inc> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-hackers@freebsd.org Subject: Re: doubt about IPSEC - Freebsd 7 X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 24 Nov 2007 15:37:35 -0000 VANHULLEBUS Yvan wrote: >> I'm having some problems right now setting up a vpn to complete phase 2, >> >> (the error is no proposal chosen). >> Since ipsec-tools uses the facilities in the kernel, I want to make sure >> that the >> kernel provides everything racoon needs... >> > > That really sounds like a configuration issue (racoon.conf, or perhaps > your SPD entries), racoon's debug on responder should give you more > informations on the problem. > > Yes, that's what I thought as well , but I'm at the rope's end. I've already sent a mail to ipsec-tools mailing list describing the problem, but I had to rule out the possibility that it was os-related first. I hope some of them guys can help me. Unfortunatyle isakmpd doesn't work in freebsd 7 and I couln't find any other IKE manager for the os...