From owner-freebsd-security  Sat Jan 13 14:26:10 2001
Delivered-To: freebsd-security@freebsd.org
Received: from mine.kame.net (kame195.kame.net [203.178.141.195])
	by hub.freebsd.org (Postfix) with ESMTP
	id 05BF937B401; Sat, 13 Jan 2001 14:25:50 -0800 (PST)
Received: from localhost (usr-p30-76.tmisnet.com [205.197.30.76])
	by mine.kame.net (8.9.3/3.7W) with ESMTP id HAA53402;
	Sun, 14 Jan 2001 07:23:07 +0900 (JST)
To: jorge@aker.com.br
Cc: freebsd-net@freebsd.org, freebsd-security@freebsd.org
Subject: Re: IPSEC: racoon and Win2K
In-Reply-To: Your message of "Wed, 10 Jan 2001 19:37:32 -0200"
	<3A5CD61C.673C1B83@aker.com.br>
References: <3A5CD61C.673C1B83@aker.com.br>
X-Mailer: Cue version 0.6 (001128-1517/sakane)
Mime-Version: 1.0
Content-Type: Text/Plain; charset=us-ascii
Message-Id: <20010114072639Y.sakane@ydc.co.jp>
Date: Sun, 14 Jan 2001 07:26:39 +0900
From: "Shoichi 'Ne' Sakane" <sakane@ydc.co.jp>
X-Dispatcher: imput version 990905(IM130)
Lines: 11
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

> Anyone was successfull in making these interoperate? Could you please
> tell me which racoon version you used and please send me the conf file?

I was successfull in that, but only with transport mode.
But Win2K sometime rejected the phase 2 exchange due to
proposal mismatch.  I could not get the reason.  See,
http://www.tanu.org/~sakane/doc/public/report-ike-interop0007.html

I doubt that Win2K can accept a connection of tunnel mode as a responder.
Because Win2K is generally used as a client device of remote accessing
into the private network through a security gateway.


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message