From owner-freebsd-current@FreeBSD.ORG Mon Aug 9 14:30:31 2004 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id AFC6B16A4D4 for ; Mon, 9 Aug 2004 14:30:31 +0000 (GMT) Received: from transport.cksoft.de (transport.cksoft.de [62.111.66.27]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2316143D39 for ; Mon, 9 Aug 2004 14:30:09 +0000 (GMT) (envelope-from bzeeb-lists@lists.zabbadoz.net) Received: from transport.cksoft.de (localhost [127.0.0.1]) by transport.cksoft.de (Postfix) with ESMTP id 545D91FFDD4; Mon, 9 Aug 2004 16:30:07 +0200 (CEST) Received: by transport.cksoft.de (Postfix, from userid 66) id 47ECB1FF90C; Mon, 9 Aug 2004 16:30:05 +0200 (CEST) Received: by mail.int.zabbadoz.net (Postfix, from userid 1060) id 6F2AC15384; Mon, 9 Aug 2004 14:27:48 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by mail.int.zabbadoz.net (Postfix) with ESMTP id 6459215329; Mon, 9 Aug 2004 14:27:49 +0000 (UTC) Date: Mon, 9 Aug 2004 14:27:49 +0000 (UTC) From: "Bjoern A. Zeeb" X-X-Sender: bz@e0-0.zab2.int.zabbadoz.net To: Alexander Leidinger In-Reply-To: <20040809161137.0bab2d07@Magellan.Leidinger.net> Message-ID: References: <200408080622.i786Mnhe017474@www1.pochta.ru> <20040808132524.GB1033@mehnert.org><20040809112700.GB659@mehnert.org> <20040809150754.13ca108a@Magellan.Leidinger.net> <20040809153341.24963cfd@Magellan.Leidinger.net> <20040809161137.0bab2d07@Magellan.Leidinger.net> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-Virus-Scanned: by AMaViS cksoft-s20020300-20031204bz on transport.cksoft.de cc: FreeBSD current mailing list Subject: Re: IPSec + 5.2.current Problem X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 09 Aug 2004 14:30:32 -0000 On Mon, 9 Aug 2004, Alexander Leidinger wrote: > > which on ? use vs. require ? I think this is just not HEAD. > > In my case it's -current from Jul 18. and use vs. require does make a difference for you ? > > your problem: do you really need gif(4) ? if yes - what for ? > > In my case the problem doesn't matter, since using FAST_IPSEC works for > me. But I think it should be fixed for 5.3. the MSIZE= should really be fixed I think, yes. > As you can see in the above mentioned mail, I converted a 4.x system to > -current. On 4.x I've used gif for a tunnel (as documented in the > handbook) I will have to read this. Nether had to use gif(4) with IPsec on the 4.[7-*] machines I co-configered. Perhaps the handbook is just outdated. > between the FreeBSD system and a VPN appliance which isn't > under my control. Is there another way to setup a tunnel in -current? only use IPSec w/o gif(4). gif(4) is currently needed for few things - IPv6 with FAST_IPSEC - running s.th. like a link bound routing protocol over IPsec (I think) That's what I can think of at the moment. but take care - whatever your applicance on the other side does and how it had worked up to now ... -- Bjoern A. Zeeb bzeeb at Zabbadoz dot NeT