Date: Thu, 15 Nov 2001 22:50:41 -0500 From: "Smith, Rick" <rsmith@vetx.com> To: "Shoichi Sakane" <sakane@kame.net> Cc: <freebsd-net@freebsd.org> Subject: RE: IPSEC / RAPTOR Firewall Interaction Message-ID: <ABAB339CCE9BEA4AB855857BB654A8FFD079@nic.vetx.com>
next in thread | raw e-mail | index | archive | help
What's the difference between tunnel and transport mode configs in racoon ? I'm troubled by the fact that racoon seems to be the ONLY tool for this, and yet there's an extreme lack of documentation that exists for racoon configuration. Anyone have a transport mode config from racoon they could share ? Rick -----Original Message----- From: Shoichi Sakane [mailto:sakane@kame.net] Sent: Thursday, November 15, 2001 9:00 PM To: Smith, Rick Cc: freebsd-net@freebsd.org Subject: Re: IPSEC / RAPTOR Firewall Interaction > I'm attempting to figure out how to setup an IPv4 IPSEC tunnel between > two of our other offices (running Symantec Raptor 6.50 for Windows NT) > and my FreeBSD firewall here in my office (4.2-RELEASE) >=20 > Here's a little network diagram of the situation: >=20 > x.x.51.24 (my inside) <--> x.x.5.254 (my external address) <--- > Internet ---> x.x.42.26 (Their External) <--> 172.16.11.0 (Their > Internal) >=20 > On their firewall (Raptor) they are connecting to me using SHA1 / 3DES > with no data compression, also using pre-shared keys. >=20 > I'd like to do this using gif0 tunnels, but I just can't figure out how > to set it all up correctly. =20 don't forget that the generic tunnel(gif) is different from the ipsec tunnel. when you use gif, you have to configure the raptor firewall to use ipsec TRANSPORT mode. Or you should use racoon with the ipsec tunnel mode, without gif. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?ABAB339CCE9BEA4AB855857BB654A8FFD079>