Date: Tue, 10 Sep 2002 13:32:05 +0200 From: fabrizio.fresco@netsiel.it To: freebsd-questions@freebsd.org Subject: Re: ipsec Message-ID: <3D7DD835.310035D1@netsiel.it> References: <3D7B245E.4050105@witchspace.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Jonathan Belson wrote:
> Here is /etc/ipsec.conf on my server:
>
> flush;
> spdflush;
> spdadd 192.168.0.100/24 192.168.0.10/24 any -P out ipsec esp/transport/192.168.0
> .100-192.168.0.10/require;
> spdadd 192.168.0.10/24 192.168.0.100/24 any -P in ipsec esp/transport/192.168.0.
> 10-192.168.0.100/require;
>
> The server is 192.168.0.100, and the laptop is 192.168.0.10.
why /24 ?
try:
spdadd 192.168.0.100/32 192.168.0.10/32 any -P out ipsec
esp/transport/192.168.0.100-192.168.0.10/require;
spdadd 192.168.0.10/32 192.168.0.100/32 any -P in ipsec
esp/transport/192.168.0.10-192.168.0.100/require;
bye
--
Fabrizio Fresco
--------------------------------------------------------------------
CONFIDENTIALITY NOTICE
This message and its attachments are addressed solely to the persons
above and may contain confidential information. If you have received
the message in error, be informed that any use of the content hereof
is prohibited. Please return it immediately to the sender and delete
the message. Should you have any questions, please contact us by
replying to webmaster@telecomitalia.it.
Thank you
www.telecomitalia.it
--------------------------------------------------------------------
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3D7DD835.310035D1>