From owner-freebsd-questions@FreeBSD.ORG  Tue Jul  1 03:08:22 2003
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 3C02637B401
	for <freebsd-questions@freebsd.org>;
	Tue,  1 Jul 2003 03:08:22 -0700 (PDT)
Received: from smtp.mailbox.co.uk (smtp.mailbox.co.uk [195.82.125.32])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 4AFA944011
	for <freebsd-questions@freebsd.org>;
	Tue,  1 Jul 2003 03:08:21 -0700 (PDT)
	(envelope-from wayne@penguinpowered.org)
Received: from [212.18.244.168] (helo=marvin.penguinpowered.org.uk)
	by smtp.mailbox.co.uk with esmtp (Exim 3.36 #1)
	id 19XI3g-00082v-00
	for freebsd-questions@freebsd.org; Tue, 01 Jul 2003 11:08:20 +0100
Received: from waynep by marvin.penguinpowered.org.uk with local (Exim 3.33
	#1)	id 19XIDP-0008JU-00
	for freebsd-questions@freebsd.org; Tue, 01 Jul 2003 11:18:23 +0100
Date: Tue, 1 Jul 2003 11:18:23 +0100
From: Wayne Pascoe <freebsd@penguinpowered.org.uk>
To: freebsd-questions@freebsd.org
Message-ID: <20030701101823.GA31807@marvin.penguinpowered.org.uk>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.4i
X-System: FreeBSD i386 with kernel 4.8-STABLE
Sender: Wayne <wayne@penguinpowered.org>
Subject: Racoon with Raptor
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 01 Jul 2003 10:08:22 -0000

Hi all,

I'm setting up a VPN between a FreeBSD box and a raptor box. I'm having
some issues with racoon not exchanging keys correctly though.

I'm getting the following error when I run racoon in the foreground:

2003-07-01 11:05:58: ERROR: isakmp.c:1776:isakmp_chkph1there(): phase2
negotiation failed due to time up waiting for phase1. ESP
213.xx.xx.226->213.xx.xx.135

226 is the Raptor machine and 135 is our FreeBSD machine.

The raptor admin has said to use md5 as the hash algorithym and des as
the encryption algo. I have the following in my config file:

proposal {
	encryption_algorithm des;
	hash_algorithm md5;
	authentication_method pre_shared_key;
	dh_group 2 ;
}

sainfo anonymous
{
	pfs_group 1;
	lifetime time 10 min;
	encryption_algorithm des;
	authentication_algorithm hmac_md5;
	compression_algorithm deflate ;
}

I've tried aggressive, main and base as my exchange mode.

Anyone got any ideas about this ? 

Thanks,

-- 
Wayne Pascoe