Date: Tue, 1 Jul 2003 11:18:23 +0100 From: Wayne Pascoe <freebsd@penguinpowered.org.uk> To: freebsd-questions@freebsd.org Subject: Racoon with Raptor Message-ID: <20030701101823.GA31807@marvin.penguinpowered.org.uk>
next in thread | raw e-mail | index | archive | help
Hi all,
I'm setting up a VPN between a FreeBSD box and a raptor box. I'm having
some issues with racoon not exchanging keys correctly though.
I'm getting the following error when I run racoon in the foreground:
2003-07-01 11:05:58: ERROR: isakmp.c:1776:isakmp_chkph1there(): phase2
negotiation failed due to time up waiting for phase1. ESP
213.xx.xx.226->213.xx.xx.135
226 is the Raptor machine and 135 is our FreeBSD machine.
The raptor admin has said to use md5 as the hash algorithym and des as
the encryption algo. I have the following in my config file:
proposal {
encryption_algorithm des;
hash_algorithm md5;
authentication_method pre_shared_key;
dh_group 2 ;
}
sainfo anonymous
{
pfs_group 1;
lifetime time 10 min;
encryption_algorithm des;
authentication_algorithm hmac_md5;
compression_algorithm deflate ;
}
I've tried aggressive, main and base as my exchange mode.
Anyone got any ideas about this ?
Thanks,
--
Wayne Pascoe
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030701101823.GA31807>