IPsec works, but racoon/IKE does not
Dan Langille
dan at langille.org
Wed Apr 28 07:24:26 PDT 2004
On 28 Apr 2004 at 4:56, Bjoern A. Zeeb wrote:
> On Tue, 27 Apr 2004, Dan Langille wrote:
>
> > I have no idea whatsoever as to why racoon/IKE does not work here.
> > I've tried various how-to documents but found nothing that works for
> > me.
> >
> > Gateway (10.0.0.1) running 4.9-stable.
> > Laptop (10.0.0.10) running 5.2.1-release.
> ...
> > I see this on the gateway. Does this mean anything to anyone?
> > Thanks.
>
> not read the log but this is most likly the problem described in this
> thread (along with solutions):
>
> http://lists.freebsd.org/pipermail/freebsd-net/2004-March/003514.html
Thank you! That was it. IKE just worked after these mods to my
kernel:
remove:
options IPSEC
options IPSEC_ESP
options IPSEC_DEBUG
options INET6
add:
options FAST_IPSEC
device crypto
man fast_ipsec told me that there is no support for IPv6, which
eventually led me to remove INET6 when the kernel would not compile.
--
Dan Langille : http://www.langille.org/
BSDCan - http://www.bsdcan.org/
More information about the freebsd-security
mailing list