From owner-freebsd-security Tue Apr 3 7:25:29 2001 Delivered-To: freebsd-security@freebsd.org Received: from bootp-20-219.bootp.virginia.edu (bootp-20-219.bootp.Virginia.EDU [128.143.20.219]) by hub.freebsd.org (Postfix) with ESMTP id 0136137B719 for ; Tue, 3 Apr 2001 07:25:28 -0700 (PDT) (envelope-from mipam@virginia.edu) Received: by bootp-20-219.bootp.virginia.edu (Postfix) id 0DC781D001; Tue, 3 Apr 2001 09:27:28 -0500 (EST) Date: Tue, 3 Apr 2001 09:27:27 -0500 From: Mipam To: Erik Salander Cc: freebsd-security@FreeBSD.ORG Subject: Re: IPSec and dynamic IP? Message-ID: <20010403092727.A15044@bootp-20-219.bootp.virginia.edu> Reply-To: mipam@ibb.net References: <3AC8AABF.C2B52283@whistle.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <3AC8AABF.C2B52283@whistle.com>; from erik@whistle.com on Mon, Apr 02, 2001 at 09:37:19AM -0700 X-Operating-System: BSD Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Mon, Apr 02, 2001 at 09:37:19AM -0700, Erik Salander wrote: > > Is there a way to setup setkey and racoon.conf to accomodate dynamic > IP on the security gateway of a LAN-to-LAN VPN? I have a reply from > Soichi below, indicating this isn't part of the KAME distribution, > perhaps a patch someplace? Racoon wont support dynamic ip's. However, i believe isakmpd from openbsd does. You could try to use that for example, i use it under netbsd, dont use it with dynamic ip, but i heared that some guys who use openbsd with isakmpd have it running with dynamic ip's :) Bye, Mipam. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message