I have had win2k working fine. The trick is you need to use MMC and the ipsec snapin to map your own IPsec policies, specifically remove the standard Kerberos authentication and either use shared passwords, or certificates, both of which work with Racoon. The phase 2 failure is indicitive that either your shared secrets do not match ( have you checked the psk.txt file for racoon - modes are especially NB in this mode - but also that you have the right secret for the IP address)
Barry -- Barry Irwin [EMAIL PROTECTED] +27214875150 Systems Administrator: Networks And Security Itouch Labs http://www.itouchlabs.com South Africa On Wed 2002-02-20 (00:53), tang hongbin wrote: > Dear all; > > I tried to build VPN tunnels between win2000 > professional and FreeBSD4.2 with RACOON as IKE > negotiator. The procedures were described as > following: > > 1: I set up local policies on win2000. > 2: I added rules into racoon.conf and/or psk.txt. > > when I sended messages from win2000 to BSD VPN server, > RACOON met problems at phase 2 and printed the > following infomation: > .... > isakmp-info_recv_n():776 unknown notify message.... > .. > > If you has succeeded in connecting win2000 and RACOON > on FressBSD, please give your setup procedure in > detail. > > Thank you > > bill.tang > [EMAIL PROTECTED] > > > __________________________________________________ > Do You Yahoo!? > Yahoo! Sports - Coverage of the 2002 Olympic Games > http://sports.yahoo.com > > To Unsubscribe: send mail to [EMAIL PROTECTED] > with "unsubscribe freebsd-net" in the body of the message > > -- Barry Irwin [EMAIL PROTECTED] +27214875150 Systems Administrator: Networks And Security Itouch Labs http://www.itouchlabs.com South Africa To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-net" in the body of the message
