From owner-freebsd-questions Tue Sep 10 4:32:26 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4868A37B400 for ; Tue, 10 Sep 2002 04:32:23 -0700 (PDT) Received: from sun6.cww.telecomitalia.it (proxy04.csi.telecomitalia.it [212.210.43.247]) by mx1.FreeBSD.org (Postfix) with ESMTP id 29A1343E3B for ; Tue, 10 Sep 2002 04:32:17 -0700 (PDT) (envelope-from fabrizio.fresco@netsiel.it) Received: from sun6.cww.telecomitalia.it (helo=netsiel.it) by sun6.cww.telecomitalia.it with esmtp (Exim 3.15 #2) id 17ojF1-0000Tq-00 for freebsd-questions@freebsd.org; Tue, 10 Sep 2002 13:31:35 +0200 Message-ID: <3D7DD835.310035D1@netsiel.it> Date: Tue, 10 Sep 2002 13:32:05 +0200 From: fabrizio.fresco@netsiel.it X-Mailer: Mozilla 4.8 [en] (Windows NT 5.0; U) X-Accept-Language: en MIME-Version: 1.0 To: freebsd-questions@freebsd.org Subject: Re: ipsec References: <3D7B245E.4050105@witchspace.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Jonathan Belson wrote: > Here is /etc/ipsec.conf on my server: > > flush; > spdflush; > spdadd 192.168.0.100/24 192.168.0.10/24 any -P out ipsec esp/transport/192.168.0 > .100-192.168.0.10/require; > spdadd 192.168.0.10/24 192.168.0.100/24 any -P in ipsec esp/transport/192.168.0. > 10-192.168.0.100/require; > > The server is 192.168.0.100, and the laptop is 192.168.0.10. why /24 ? try: spdadd 192.168.0.100/32 192.168.0.10/32 any -P out ipsec esp/transport/192.168.0.100-192.168.0.10/require; spdadd 192.168.0.10/32 192.168.0.100/32 any -P in ipsec esp/transport/192.168.0.10-192.168.0.100/require; bye -- Fabrizio Fresco -------------------------------------------------------------------- CONFIDENTIALITY NOTICE This message and its attachments are addressed solely to the persons above and may contain confidential information. If you have received the message in error, be informed that any use of the content hereof is prohibited. Please return it immediately to the sender and delete the message. Should you have any questions, please contact us by replying to webmaster@telecomitalia.it. Thank you www.telecomitalia.it -------------------------------------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message