From owner-freebsd-security Sat Mar 24 13:53:16 2001 Delivered-To: freebsd-security@freebsd.org Received: from mentisworks.com (valkery.mentisworks.com [207.227.89.226]) by hub.freebsd.org (Postfix) with ESMTP id B353337B776 for ; Sat, 24 Mar 2001 13:52:47 -0800 (PST) (envelope-from oldfart@gtonet.net) Received: from [24.29.197.39] (HELO tyr.kinsman.lan) by mentisworks.com (CommuniGate Pro SMTP 3.4.2) with ESMTP id 340445 for freebsd-security@freebsd.org; Sat, 24 Mar 2001 15:52:58 -0600 Received: from mail pickup service by tyr.kinsman.lan with Microsoft SMTPSVC; Sat, 24 Mar 2001 15:52:43 -0600 Received: from mail pickup service by tyr.kinsman.lan with Microsoft SMTPSVC; Sat, 24 Mar 2001 15:52:40 -0600 Received: from mail pickup service by tyr.kinsman.lan with Microsoft SMTPSVC; Sat, 24 Mar 2001 15:52:37 -0600 MIME-Version: 1.0 Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Received: from mailbox lists@valkery.mentisworks.com by Pop2Smtpcom id <113@2432001155237113> directly for ; Sat, 24 Mar 2001 3:52:37 PM -0600 smtpmailfrom Content-Class: urn:content-classes:message Subject: RE: IPSEC: racoon and Win2K Date: Sat, 24 Mar 2001 15:52:41 -0600 Message-ID: <39F078A4FCEC5D408C23FC3D92DEE402016299@tyr.kinsman.lan> Thread-Topic: IPSEC: racoon and Win2K thread-index: AcC0rA1efAZjoewUQHKXdczG+L8++w== From: "oldfart@gtonet" To: Reply-To: X-OriginalArrivalTime: 24 Mar 2001 21:52:43.0003 (UTC) FILETIME=[C0E5BCB0:01C0B4AC] Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org OK, now I see it's majordomo, can someone fix it? OF > -----Original Message----- > From: owner-freebsd-security@FreeBSD.ORG > [mailto:owner-freebsd-security@FreeBSD.ORG]On Behalf Of oldfart@gtonet > Sent: Saturday, March 24, 2001 1:43 PM > To: freebsd-security@FreeBSD.ORG > Subject: RE: IPSEC: racoon and Win2K > > > You've posted the same message 9 times, please stop. Somebody will = help > IF/when they can. > > OF > > > -----Original Message----- > > From: owner-freebsd-security@FreeBSD.ORG > > [mailto:owner-freebsd-security@FreeBSD.ORG]On Behalf Of Jorge = Peixoto > > Vasquez > > Sent: Saturday, March 24, 2001 1:33 PM > > To: freebsd-security@FreeBSD.ORG > > Subject: IPSEC: racoon and Win2K > > > > > > I've read the mini-howto on how to setup IPSEC on the FreeBSD > > (http://asherah.dyndns.org/~josh/ipsec-howto.txt) and have been most > > succesful so far. > > > > I would be very glad if anyone could help me on the following = matter: > > > > The only problem I've encountered is that, when making Win2K and = FreeBSD > > interoperate, the IKE's phase 2 only suceeds if > > Win2K initiates the process. If racoon is to start it, Win2k will = not > > accept any proposal for phase 2, complaining that the dh group = number > > (which should correctly be either 1 or 2) received is 1 or 2 = (depending > > on the pfs_group setting in racoon.conf) and not null(0). If I try > > setting pfs_group to null, I get a parse error. > > > > All the docs I found in the kame site (www.kame.net), the handbook, = and > > the man pages haven't been of any help too. > > > > Thank you very much for your attention, > > > > Sincerely, > > > > jOrge > > > > p.s. I am using FreeBSD 4.2-Stable, racoon 20001111a and (YES) I got = the > > high-encryption pack and SP1 installed on the Win2K box. > > -- > > Jorge Peixoto Vasquez, Elet. Eng. > > Aker Security Solutions > > tel. +55 - 61 - 340 9083 > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message