On Tue, 23 Feb 2010, VANHULLEBUS Yvan wrote:
Hi,
On Tue, Feb 23, 2010 at 03:49:42PM +0300, Denis Antrushin wrote:
On 02/23/10 15:21, VANHULLEBUS Yvan wrote:
[]
Taking into account this quote:
On 02/11/10 15:55, Bjoern A. Zeeb wrote:
Him saying it works on linux - has ipsec-tools grown
On Tue, Feb 23, 2010 at 03:49:42PM +0300, Denis Antrushin wrote:
> On 02/23/10 15:21, VANHULLEBUS Yvan wrote:
[]
> Taking into account this quote:
>
> On 02/11/10 15:55, Bjoern A. Zeeb wrote:
> > Him saying it works on linux - has ipsec-tools grown proper OA support
> > these days? If that wou
On 02/23/10 15:21, VANHULLEBUS Yvan wrote:
On Tue, Feb 23, 2010 at 02:10:23PM +0300, Denis Antrushin wrote:
[...]
ipsec-tools understand NAT-OA payload in IKE exchange, but then simply
discard it and do not send this information to kernel.
In ipsec-tool mailing list archives I found mention that
On Tue, Feb 23, 2010 at 02:10:23PM +0300, Denis Antrushin wrote:
[...]
> ipsec-tools understand NAT-OA payload in IKE exchange, but then simply
> discard it and do not send this information to kernel.
> In ipsec-tool mailing list archives I found mention that linux does not
> need this OA info, bec
On 02/11/10 15:55, Bjoern A. Zeeb wrote:
On Thu, 11 Feb 2010, VANHULLEBUS Yvan wrote:
How can I further debug this problem?
You can check on responder that you have lots of TCP checksums errors,
which will confirm that you would need support for NAT-OA extension of
NAT-T RFC, as you want to d
On 02/11/10 15:55, Bjoern A. Zeeb wrote:
On Thu, 11 Feb 2010, VANHULLEBUS Yvan wrote:
How can I further debug this problem?
You can check on responder that you have lots of TCP checksums errors,
which will confirm that you would need support for NAT-OA extension of
NAT-T RFC, as you want to d
On Thu, 11 Feb 2010, VANHULLEBUS Yvan wrote:
Hi,
I'm trying to establish IPSec connection between FreeBSD and
Solaris boxes. I use FreeBSD 8-STABLE (don't recall exact checkout
date, but it contains recent IPComp fixes for sure).
Since I'm behind NAT, I compiled 0.8alpha snapshot of ipsec-tools
On Thu, Feb 11, 2010 at 02:24:50PM +0300, Denis Antrushin wrote:
> Hello,
Hi.
> I'm trying to establish IPSec connection between FreeBSD and
> Solaris boxes. I use FreeBSD 8-STABLE (don't recall exact checkout
> date, but it contains recent IPComp fixes for sure).
> Since I'm behind NAT, I compi
Hello,
I'm trying to establish IPSec connection between FreeBSD and
Solaris boxes. I use FreeBSD 8-STABLE (don't recall exact checkout
date, but it contains recent IPComp fixes for sure).
Since I'm behind NAT, I compiled 0.8alpha snapshot of ipsec-tools
from their site.
racoon config looks like
