Date: Sun, 08 Sep 2002 11:20:14 +0100 From: Jonathan Belson <jon@witchspace.com> To: freebsd-questions@freebsd.org Subject: ipsec Message-ID: <3D7B245E.4050105@witchspace.com>
next in thread | raw e-mail | index | archive | help
Hiya I have a laptop with a wireless link to my server, and I'm trying to beef up the security by using ipsec (transport mode) instead of wep. Getting the link itself to work was quite easy since there are several good tutorials covering the set up. The problem I'm having is that with ipsec enabled on my server, none of my other non-ipsecing machines can talk to it any more. Do I need to explicitly tell it not to expect ispec packets from other IPs? Here is /etc/ipsec.conf on my server: flush; spdflush; spdadd 192.168.0.100/24 192.168.0.10/24 any -P out ipsec esp/transport/192.168.0 .100-192.168.0.10/require; spdadd 192.168.0.10/24 192.168.0.100/24 any -P in ipsec esp/transport/192.168.0. 10-192.168.0.100/require; The server is 192.168.0.100, and the laptop is 192.168.0.10. On a related note, how do I automatically enable wep for the wi interface? ifconfig allows you to specify a wep key, but I find I have to manually type 'wicontrol -e 1' after the card has been detected. Cheers, --Jon http://www.witchspace.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3D7B245E.4050105>