Date: Mon, 26 Nov 2001 11:47:12 +0000 From: freebsd-security-local@insignia.com To: freebsd-security@freebsd.org Subject: Re: KAME IPSec <->Redcreek Message-ID: <gu940u08e8c3196fe8k4fchc4e9o7cuujb@4ax.com>
next in thread | raw e-mail | index | archive | help
On Thu, 22 Nov 2001 15:36:13 +0900, sakane@kame.net (Shoichi Sakane) wrote: >> I wonder anyone has had success talking to a RedCreek Ravlin >> VPN gateway. I have some colleagues who are successfully using >> freeswan, but I'm having none at all with racoon. >> >> A packet trace shows the initial packet going to port 500 of >> the Ravlin, but no response. Unfortunately the Ravlin doesn't >> syslog anything at all in this situation, so it's kind of >> hard to debug! > >did you compare between the ravlin's configuration and racoon's one ? >if there was a mismatch, the negotiation would fail. during the phase1 >negotiation, sometime the node would discard siliently. > >there is a possibility that the ravlin requires the main mode of IKE. >but according to your explanation, the packet might not reach the port >500 of the ravlin because there might be a packet filtering. Yes, I believe I am using the same settings. I don't think there is any packet filterin in place. I plan to wait until the latest snapshot appears in the FreeBSD ports system and try again. Jim To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?gu940u08e8c3196fe8k4fchc4e9o7cuujb>