Date: Wed, 20 Jun 2001 16:10:30 +0100 From: "Nick Hilliard" <nick-fbsdstable@netability.ie> To: stable@freebsd.org Subject: Re: IPsec + IKE (racoon) problems Message-ID: <20010620161030.A12091@euripides.enigma.ie>
next in thread | raw e-mail | index | archive | help
> I'm now trying to switch over to racoon. I've followed instructions from > various place on the net. I load only SPD into kernel with setkey (see > rc.ipsec attachment). Have a very simple psk.txt with v4 & v6 addresses > of both hosts (see psk.txt attachment) along with an almost unmodifed > racoon.conf file, which I've included. I'm not going to comment on your racoon configuration because ipsec configuration in general on freebsd is pretty baroque and it's been a while since I've looked at it hard. However, I will say that even when I got a simplistic racoon configuration working, ipsec would stop working at arbitrary times, and the only way to get it working again was to kill off all instances of racoon, clear out the SPD and SAD on each machine, and then restart the whole lot again. Let me know if you want the configuration. There's a good article on this on: http://www.daemonnews.org/200101/ipsec-howto.html but, hey, you've probably seen it already. :-) Nick To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010620161030.A12091>