On Tue, Nov 08, 2005 at 03:34:54PM -0500, Will H. Backman wrote: > Trying to get a handle on the new ipsecctl tool, and how it relates to > the "10 steps" in the vpn man page. >
for the manual keying sections, both (old-style) ipsecadm(8) commands and (new-style) ipsecctl(8) commands are given. the end result should be the same. > If I go with a simple network to network vpn setup in the ipsec.conf: > ike esp from 10.1.1.0/24 to 10.1.2.0/24 peer 192.168.3.2 > > Does that take the place of steps 2 through 6? > i'm not exactly sure what you're asking. no, that one line does not entirely replace steps 2 - 6. if you're asking if your one line has the equivalent effect of the ipsec.conf lines in vpn(8), i don't know. maybe if you try and work through the page and post if you get to a bit that is unclear? and just in case this is the sticking point: note that after the ipsecadm stuff, the equivalent ipsecctl stuff is given. jmc
