Date: Mon, 04 Sep 2000 10:22:30 -0700 From: Cy Schubert - ITSD Open Systems Group <Cy.Schubert@uumail.gov.bc.ca> To: Ali Alaoui El Hassani <961BE653994@stud.alakhawayn.ma> Cc: Cy Schubert - ITSD Open Systems Group <Cy.Schubert@uumail.gov.bc.ca>, cjclark@alum.mit.edu, freebsd-security@FreeBSD.ORG Subject: Re: SOS Help ipsec (Esp Ah) Message-ID: <200009041723.e84HNGQ23967@cwsys.cwsent.com> In-Reply-To: Your message of "Mon, 04 Sep 2000 14:58:40 -0000." <Pine.SOL.3.96.1000904145756.2654A-100000@stud.alakhawayn.ma>
next in thread | previous in thread | raw e-mail | index | archive | help
In message <Pine.SOL.3.96.1000904145756.2654A-100000@stud.alakhawayn.ma> , Ali A laoui El Hassani writes: > Dear all, > Yes indeed I am using the pipsecd port > > Thank you in Advance, > > Ali ALaoui El Hassani. > You still haven't told us much about the software you're using. What release of FreeBSD are you using? (From your description of he problem you might be using 2.x or 3.x.) What's in your kernel config? How do you start pipsecd? What's in your pipsecd.conf file (don't list your passwords)? ... Just a guess (still don't know what software you're using but assuming FreeBSD 2.x or 3.x), but increase the number of tun devices from 2 to 4. Pipsecd uses 2 tun devices per VPN tunnel. As a cautionary note, not providing all of the relevant background information to solve a problem will result in no solution and possibly even insults. Regards, Phone: (250)387-8437 Cy Schubert Fax: (250)387-5766 Team Leader, Sun/DEC Team Internet: Cy.Schubert@osg.gov.bc.ca Open Systems Group, ITSD, ISTA Province of BC > On Mon, 4 Sep 2000, Cy Schubert - ITSD Open Systems Group wrote: > > > In message <20000903221556.R62475@149.211.6.64.reflexcom.com>, "Crist J > > . Clark > > " writes: > > > On Mon, Sep 04, 2000 at 02:46:32AM +0000, Ali Alaoui El Hassani wrote: > > > > > > > > Dear All, > > > > > > > > I am running into trouble. I am using tun0 as tunnel of a secure > > > > communication via ESP. I want also to use Ah as another reliable kind o > f > > > > communication so I thaught about using it via tun1. when I wanted to > > > > create tun1 i.e (I went to GENERIC and modified the number of tunnels > > > > from 1 to 2) and I wanted to recompile the kernel , I had a recompilati > on > > > > error due to some patch that I applied to my kernel previously. > > > > well the thing is that I can not use point to point links ie sl0,pp0. > > > > Due to time limitations I can not reinstall another kernel. > > > > > > > > My question is: > > > > Do you have any idea on how I can overpass this situation ? > > > > > > Well, you should not need tun(4) devices at all to do IPsec. > > > > He would if he's using the pipsecd port. > > > > He hasn't told us what software he's using, so we don't have enough > > information to comment about his problem. > > > > > > Regards, Phone: (250)387-8437 > > Cy Schubert Fax: (250)387-5766 > > Team Leader, Sun/DEC Team Internet: Cy.Schubert@osg.gov.bc.ca > > Open Systems Group, ITSD, ISTA > > Province of BC > > > > > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-security" in the body of the message > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200009041723.e84HNGQ23967>