From owner-freebsd-security  Mon Sep  4  7: 3:56 2000
Delivered-To: freebsd-security@freebsd.org
Received: from point.osg.gov.bc.ca (point.osg.gov.bc.ca [142.32.102.44])
	by hub.freebsd.org (Postfix) with ESMTP id 0F4C337B422
	for <freebsd-security@FreeBSD.ORG>; Mon,  4 Sep 2000 07:03:46 -0700 (PDT)
Received: (from daemon@localhost)
	by point.osg.gov.bc.ca (8.8.7/8.8.8) id HAA22734;
	Mon, 4 Sep 2000 07:02:30 -0700
Received: from passer.osg.gov.bc.ca(142.32.110.29)
 via SMTP by point.osg.gov.bc.ca, id smtpda22732; Mon Sep  4 07:02:11 2000
Received: (from uucp@localhost)
	by passer.osg.gov.bc.ca (8.9.3/8.9.1) id HAA64913;
	Mon, 4 Sep 2000 07:02:10 -0700 (PDT)
Received: from cwsys9.cwsent.com(10.2.2.1), claiming to be "cwsys.cwsent.com"
 via SMTP by passer9.cwsent.com, id smtpdR64911; Mon Sep  4 07:01:11 2000
Received: (from uucp@localhost)
	by cwsys.cwsent.com (8.11.0/8.9.1) id e84E1Bp23058;
	Mon, 4 Sep 2000 07:01:11 -0700 (PDT)
Message-Id: <200009041401.e84E1Bp23058@cwsys.cwsent.com>
Received: from localhost.cwsent.com(127.0.0.1), claiming to be "cwsys"
 via SMTP by localhost.cwsent.com, id smtpdg23052; Mon Sep  4 07:00:44 2000
X-Mailer: exmh version 2.1.1 10/15/1999
Reply-To: Cy Schubert - ITSD Open Systems Group <Cy.Schubert@uumail.gov.bc.ca>
From: Cy Schubert - ITSD Open Systems Group <Cy.Schubert@uumail.gov.bc.ca>
X-OS: FreeBSD 4.1-RELEASE
X-Sender: cy
To: cjclark@alum.mit.edu
Cc: Ali Alaoui El Hassani <961BE653994@stud.alakhawayn.ma>,
	freebsd-security@FreeBSD.ORG
Subject: Re: SOS Help ipsec (Esp Ah) 
In-reply-to: Your message of "Sun, 03 Sep 2000 22:15:56 PDT."
             <20000903221556.R62475@149.211.6.64.reflexcom.com> 
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Date: Mon, 04 Sep 2000 07:00:44 -0700
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

In message <20000903221556.R62475@149.211.6.64.reflexcom.com>, "Crist J 
. Clark
" writes:
> On Mon, Sep 04, 2000 at 02:46:32AM +0000, Ali Alaoui El Hassani wrote:
> > 
> > Dear All,
> > 
> > I am running into trouble. I am using tun0 as tunnel of a secure
> > communication via ESP. I want also to use Ah as another reliable kind of
> > communication so I thaught about using it via tun1. when I wanted to
> > create tun1 i.e (I went to GENERIC and modified the number of  tunnels
> > from 1 to 2) and I wanted to recompile the kernel , I had a recompilation
> > error due to some patch that I applied to my kernel previously. 
> > well the thing is that I can not use point to point links ie sl0,pp0.
> > Due to time limitations I can not reinstall another kernel.
> > 
> > My question is:
> > Do you have any idea on how I can overpass this situation ?
> 
> Well, you should not need tun(4) devices at all to do IPsec.

He would if he's using the pipsecd port.

He hasn't told us what software he's using, so we don't have enough 
information to comment about his problem.


Regards,                       Phone:  (250)387-8437
Cy Schubert                      Fax:  (250)387-5766
Team Leader, Sun/DEC Team   Internet:  Cy.Schubert@osg.gov.bc.ca
Open Systems Group, ITSD, ISTA
Province of BC





To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message