Racoon - socket based policy negotiation - is it available?

Hi, I was wondering why racoon doesnt support negotiation for per-socket policies? Is it because racoon maintains its database based on src and dst addresses and a port based one doesnt always has one? Is this support is planned for any future ipsec-tools release? It is just mentioned at http://ww

Racoon and per-socket based IPSec - Doesnt seem to be working!

Hi, I need some help for ipsec configurations -- I was trying to use per-socket based IPsec with racoon. I have used setsockopt to set the ipsec policy on the socket. Then i started racoon with default configuration of remote and sainfo being anonymous. Now when i try to send out some ICMP packets

Re: Ipsec - PF_KEY and set_policy

Hi George, Thanks a lot for the clarification.. Yeah, i was quite confused with ipsec_set_policy - which has multiple definitions, one which converts the human readable policy format and another one inside the kernel.. doing a little bit of code walk through, it looks like the second one is called

Re: Ipsec - PF_KEY and set_policy

y request", which is > defined in RFC 2367 PF_KEY. Internally, setkey() will call > ipsec_set_policy() to construct the message then send it down to the > kernel. However, ipsec_set_policy() is used only for SP, not SA. > > blue > > aditya kiran wrote: > > > Hi, > &g

Ipsec - PF_KEY and set_policy

Hi, I was just trying to understand PF_KEY interface for ipsec settings. So, setkey uses it to do that. but i could find another system call - ipsec_set_policy. Could any body let me know why there are two interfaces to configure ipsec? Thanks, Aditya _

Re: PMTU Discovery support

RFC 1191 says to increase the PMTU at some itnerval (15 minutes default) next time a packet is sent, this will be used... and if PMTU is really increased, no ICMP error will be recieved. that shows an increase in the PMTU. I'm trying to understand if this mechanism is there in freebsd. any on this

PMTU Discovery support

Hi, I'm just trying to understand the PMTU Discovery support in FreeBSD. Is upward PMTU (increase in PMTU) is also discovered when PMTU Discovery is enabled? Thanks, Aditya ___ freebsd-net@freebsd.org mailing list http://lists.freebsd.org/mailman/listinf

PMTU Discovery - How to enable

Hi, I would like to know how to enable Path MTU Discovery in Free BSD 6.0. Do I need to apply some patch to get it work? Thanks, Adityaa ___ freebsd-net@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send a