Date: Tue, 15 Apr 2003 18:37:13 -0400 From: Damian Gerow <damian@sentex.net> To: Ruslan Ermilov <ru@freebsd.org> Cc: net@freebsd.org Subject: Re: IPSec tunnel setup problems Message-ID: <20030415223713.GB648@sentex.net> In-Reply-To: <20030415220310.GB57610@sunbay.com> References: <20030415215844.GY648@sentex.net> <20030415220310.GB57610@sunbay.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Thus spake Ruslan Ermilov (ru@freebsd.org) [15/04/03 18:04]: > > The two psk.txt's are exactly the same, the two /etc/ipsec.conf's are > > exact mirrors, and the two racoon.conf's are mirrors (with configuration > > names changed to match directions). It /feels/ like the remote (10.0.2.1) > > isn't finding the 'remote 10.0.1.1' configuration section that exists in > > there. I yanked the 'remote anonymous' and 'sainfo anonymous' > > configurations to help narrow this down. > > > > Does anyone have any pointers? Please reply personally, as I'm not > > subscribed. > > > Hmm, on my machines with IPSec tunnels the /etc/ipsec.conf's are > NOT the exact mirrors; they are mirrors except for the in/out > keywords. Yes, sorry, mine are the same way. Two tunnels, two subnets. Each has the appropriate 'out' rule and the appropriate 'in' rule. - Damian
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030415223713.GB648>