Sean Knox wrote:
I almost have a working VPN between isakmpd and a Netscreen box-- things fail at phase 2 as the peers enter quick mode.
The problem was a bug in isakmpd with the way it handled attributes like lifetime. I've been testing a patch from Hans-Joerg and it's been working fine ever since. A proper commit should be in -current soon. Thanks to everyone that responded.
cheers, sk
