Date: Wed, 31 Oct 2001 10:54:11 -0500 From: Christopher Sean Hilton <chris@vindaloo.com> To: Ceri <ceri@techsupport.co.uk> Cc: freebsd-questions@freebsd.org Subject: Re: Help!? Message-ID: <20011031105411.A32095@andale.vindaloo.com> In-Reply-To: <20011031145256.A21729@cartman.private.techsupport.co.uk>; from ceri@techsupport.co.uk on Wed, Oct 31, 2001 at 02:52:56PM %2B0000 References: <20011031094025.C774@andale.vindaloo.com> <20011031145256.A21729@cartman.private.techsupport.co.uk>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Oct 31, 2001 at 02:52:56PM +0000, Ceri wrote:
> On Wed, Oct 31, 2001 at 09:40:25AM -0500, Christopher Sean Hilton said:
> > Setkey doesn't work on my FreeBSD Box.
>
> Could do with just a tiny bit more information here, Chris.
>
> What version of FreeBSD are you running ?
> On what hardware ?
>
> What happens when you try to run it (does it dump core, do nothing) ?
> How are you invoking the command ?
>
> At least try and help us help you.
>
> Ceri
> --
> We've tried this God stuff long enough. It's time for a change.
>
I'm sorry. I posted this out of frustration. Yesterday I posted this:
Hi, I'm trying to setup a manually keyed IPSec tunnel between two
FreeBSD boxes. No matter how I run setkey I cannot get past this error:
Must get supported algorithms list first...
I stole the configuration from the FreeBSD IPSec HowTo figuring that I would
modify it to my needs. Here's an actual run:
# setkey -dv -c <<EOF
flush;
add 10.2.3.4 10.6.7.8 ah-old 1000 -m transport -A keyed-md5 "MYSECRETMYSECRET" ;
add 10.6.7.8 10.2.3.4 ah 2000 -m transport -A hmac-sha1 "KAMEKAMEKAMEKAMEKAME" ;
add 10.6.7.8 10.2.3.4 esp 3000 -m transport -E des-cbc "PASSWORD" ;
EOF
<1>flush
<1>;
cmdarg:
flush;
<1>add
<1>
<1>10.2.3.4
<1>
<1>10.6.7.8
<1>
<1>ah-old
<1>
<1>1000
<1>
<1>-m
<1>
<1>transport
<1>
<1>-A
<1>
<1>keyed-md5
<1>
<1>"MYSECRETMYSECRET"
line 2: Must get supported algorithms list first at [MYSECRETMYSECRET]
parse failed, line 2.
Here's the kernel version.
# uname -a
FreeBSD dantooine.vindaloo.com 4.3-STABLE FreeBSD 4.3-STABLE #0: Wed Jul 18
08:09:19 EDT 2001 root@hoth.vindaloo.com:/usr/src/sys/compile/DANTOOINE
i386
But nobody responded.
--
Chris Hilton chilton-at-vindaloo-dot-com
------------------------------------------------------------------------
"All I was doing was trying to get home from work!"
-- Rosa Parks
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20011031105411.A32095>