From owner-freebsd-questions Mon Sep 3 6: 8:14 2001 Delivered-To: freebsd-questions@freebsd.org Received: from slacknet.slacknet.com (slacknet.slacknet.com [204.228.135.180]) by hub.freebsd.org (Postfix) with ESMTP id 48C8C37B407 for ; Mon, 3 Sep 2001 06:08:11 -0700 (PDT) Received: from rj45 (helo=localhost) by slacknet.slacknet.com with local-esmtp (Exim 3.12 #1 (Debian)) id 15dtSU-00058w-00 for ; Mon, 03 Sep 2001 07:08:10 -0600 Date: Mon, 3 Sep 2001 07:08:10 -0600 (MDT) From: RJ45 To: freebsd-questions@freebsd.org Subject: IPSec on FreeBSD ?? Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Hi! I am studying IPSec and trying many implementations of it. I am very much interested in how IPSec works in FreeBSD and NetBSD. But comparing it with the OpenBSD implementation I still have not found a way with FreeBSD to set up and ESP trasnport mode (or tunnel) enabling also the authentication features in ESP, seems like only the confidentiality features of ESP can be enabled on FreeBSD while on OpenBSD also the authentication part of ESP can be enabled. Am I wrong about it ?? IF not how to enable authentication of ESP in FreeBSD ?? Suppose I Do not want to use AH but IWant to use only ESP for confidentiality (Encrypt the payload) but also for the payload authentication which is possible according to IPSec RFCs, how can I enable ESP authentication on FreeBSD ?? then I Wanted to ask if racoon is a ISAKMP IKE compliant protocol or if it is something complitely different. thank you a lot! Rick To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message