From owner-freebsd-net@FreeBSD.ORG  Sun May 23 19:15:32 2004
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 5E0CE16A4CE
	for <freebsd-net@freebsd.org>; Sun, 23 May 2004 19:15:32 -0700 (PDT)
Received: from mx3.mra.co.id (mx3.mra.co.id [202.138.254.6])
	by mx1.FreeBSD.org (Postfix) with ESMTP id BD2E643D1D
	for <freebsd-net@freebsd.org>; Sun, 23 May 2004 19:15:31 -0700 (PDT)
	(envelope-from reza@mra.co.id)
Received: from localhost (unknown [127.0.0.1])
	by mx3.mra.co.id (Postfix) with ESMTP id 956872E09B
	for <freebsd-net@freebsd.org>; Mon, 24 May 2004 09:25:55 +0700 (WIT)
Received: from mx3.mra.co.id ([127.0.0.1])
 by localhost (mx3.mra.co.id [127.0.0.1]) (amavisd-new, port 10024) with ESMTP
 id 19587-01 for <freebsd-net@freebsd.org>;
 Mon, 24 May 2004 09:24:40 +0700 (WIT)
Received: from mail.mra.co.id (unknown [172.16.0.25])
	by mx3.mra.co.id (Postfix) with ESMTP id 3E6D02E0B6
	for <freebsd-net@freebsd.org>; Mon, 24 May 2004 09:24:40 +0700 (WIT)
Received: from mra.co.id ([172.16.0.228]) by mail.mra.co.id with Microsoft
	SMTPSVC(5.0.2195.3779);	 Mon, 24 May 2004 09:12:08 +0700
Message-ID: <40B15C50.2030201@mra.co.id>
Date: Mon, 24 May 2004 09:22:08 +0700
From: Muhammad Reza <reza@mra.co.id>
User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.4) Gecko/20031008
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: freebsd-net@freebsd.org
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
X-OriginalArrivalTime: 24 May 2004 02:12:08.0909 (UTC)
	FILETIME=[846D7FD0:01C44134]
X-Virus-Scanned: by amavisd-new at mra.co.id
Subject: vpn over ipsec question
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 24 May 2004 02:15:32 -0000

Dear List.

I try to configure vpn over ipsec between two FreeBSD (4.10PRERELEASE 
and 5.1.p17) gateways.
My guidelines is from FreeBSD handbook,
Tunelling is workfine with gifconfig command, i can ping each internal 
interface from both side gateway.
The problem is when i try to securing the link with setkey command 
(setkey -f /etc/ipsec.conf), i cant no longer established connection 
between internal interface. (ping time out).
Please help me regarding this problem

regards
reza