From owner-freebsd-questions@FreeBSD.ORG  Fri Aug 26 18:15:22 2011
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id ED7AA106564A
	for <freebsd-questions@freebsd.org>;
	Fri, 26 Aug 2011 18:15:22 +0000 (UTC) (envelope-from mike@sentex.net)
Received: from smarthost1.sentex.ca (smarthost1-6.sentex.ca
	[IPv6:2607:f3e0:0:1::12])
	by mx1.freebsd.org (Postfix) with ESMTP id AED958FC08
	for <freebsd-questions@freebsd.org>;
	Fri, 26 Aug 2011 18:15:22 +0000 (UTC)
Received: from [IPv6:2607:f3e0:0:4:f025:8813:7603:7e4a] (saphire3.sentex.ca
	[IPv6:2607:f3e0:0:4:f025:8813:7603:7e4a])
	by smarthost1.sentex.ca (8.14.4/8.14.4) with ESMTP id p7QIFJ0N006088;
	Fri, 26 Aug 2011 14:15:19 -0400 (EDT) (envelope-from mike@sentex.net)
Message-ID: <4E57E2B1.9000508@sentex.net>
Date: Fri, 26 Aug 2011 14:15:13 -0400
From: Mike Tancsa <mike@sentex.net>
Organization: Sentex Communications
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US;
	rv:1.9.2.13) Gecko/20101207 Thunderbird/3.1.7
MIME-Version: 1.0
To: jhall@socket.net
References: <20110823232242.B78A5106566B@hub.freebsd.org>
	<4E545899.6090800@sentex.net>
	<20110825155205.A0D131065670@hub.freebsd.org>
	<4E5696D0.3000205@sentex.net>
	<201108261742.p7QHgS2H095637@smtp1.sentex.ca>
In-Reply-To: <201108261742.p7QHgS2H095637@smtp1.sentex.ca>
X-Enigmail-Version: 1.1.1
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
X-Scanned-By: MIMEDefang 2.71 on IPv6:2607:f3e0:0:1::12
Cc: freebsd-questions@freebsd.org
Subject: Re: Racoon to Cisco ASA 5505
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 26 Aug 2011 18:15:23 -0000

On 8/26/2011 1:42 PM, jhall@socket.net wrote:
> I am seeing a couple of things that are concerning me.  
> 
> First, I am not seeing any traffic over the gif interface, except return 
> traffic.  For example if I ping from one of my sites (e.g. 
> 10.129.30.0/24), I do not see any traffic on the gif interface. 

IP-IP interface ? (GIF). If you are using that, then you will need very
different policies on both sides.  You should mention these little
"details" when posting your configs.  Can you please post your FULL
configuration / topology. Otherwise, its kind of impossible to know what
the issue might be

	---Mike