Date: Tue, 25 May 2004 11:38:13 +0900 From: JINMEI Tatuya / =?ISO-2022-JP?B?GyRCP0BMQEMjOkgbKEI=?= <jinmei@isl.rdc.toshiba.co.jp> To: Muhammad Reza <reza@mra.co.id> Cc: freebsd-net@freebsd.org Subject: Re: vpn over ipsec question Message-ID: <y7vvfilz0x6.wl@ocean.jinmei.org> In-Reply-To: <40B15C50.2030201@mra.co.id> References: <40B15C50.2030201@mra.co.id>
next in thread | previous in thread | raw e-mail | index | archive | help
>>>>> On Mon, 24 May 2004 09:22:08 +0700, >>>>> Muhammad Reza <reza@mra.co.id> said: > I try to configure vpn over ipsec between two FreeBSD (4.10PRERELEASE > and 5.1.p17) gateways. > My guidelines is from FreeBSD handbook, > Tunelling is workfine with gifconfig command, i can ping each internal > interface from both side gateway. > The problem is when i try to securing the link with setkey command > (setkey -f /etc/ipsec.conf), i cant no longer established connection > between internal interface. (ping time out). > Please help me regarding this problem Please provide more detailed information if you want to get useful advice. At least the content of ipsec.conf is necessary. Perhaps it contains "real" secret keys you want to hide. If so, first try the same configuration with temporary keys like "foobarbaz", and report the problem again (if it happens) with the full details of ipsec.conf and the temporary keys. Another nit: you may also want to ask the question at snap-users@kame.net if you still cannot get an answer here. JINMEI, Tatuya Communication Platform Lab. Corporate R&D Center, Toshiba Corp. jinmei@isl.rdc.toshiba.co.jp
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?y7vvfilz0x6.wl>