On Wed, 5 Jul 2000, Samuel Tardieu wrote:

> On  5/07, Kris Kennaway wrote:
> | I intend to MFC this stuff in 4 or 5 days assuming it doesn't present any
> | problems, so this means we need everyone who is capable of doing so to
> | stress the new code as much as possible. IMO we *really* need to get this
> | into 4.1 despite the relatively short testing cycle, for the simple reason
> | that the newer code is much more functional, and in particular supports
> | the racoon IKE daemon for automatic management of IPSEFC security
> | associations (i.e. manually-keyed SAs are no longer required) - this is
> | already in ports. This is important for interoperability with other IPSEC
> | implementations.
> How hard would it be to use IPSEC with *.freebsd.org machines (at least
> www.freebsd.org)? This would be a good test. Of course, IPSEC should not be
> required ;)

Well, IPSEC isn't configured at all on those machines right now, and it's
probably not the best place to test from. But by all means if you have the
capability to test the new racoon port, especially interoperating it with
other IPSEC implementations (subject to what KAME is known to support)
please do so.


In God we Trust -- all others must submit an X.509 certificate.
    -- Charles Forsythe <[EMAIL PROTECTED]>

To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-current" in the body of the message

Reply via email to