I have two freebsd 5.0 boxes authenticating at stage one of the VPN, however stage 2 
fails. with: 

ph2begin_r(): respond new phase 2 negotiation:[0]<=>[0]
get_proposal_r(): no policy found:[0][0] proto=any dir=in
quick_r1recv(): failed to get proposal for responder.
_ph2begin_r(): failed to pre-process packet. 

I'm a bit new too this, so I'm guessing the lack of a policy refers to my SPD 
Database. Setkey -DP looks like this:[any][any] any
    in ipsec
    spid=19 seq=1 pid=770
    refcnt=1[any][any] any
    out ipsec
    spid=18 seq=0 pid=770

As I understand it, this means all packets heading too or from must be 
encapsulated (which is what I want, as I'm running a VPN between too FreeBSD gateway 
boxes). If I replace the with the IP of the other boxes inteface (i.e. the VPN works between<->, but other traffic from other 
interfaces is not encrypted. Any help in resolving/understanding this issue is greatly 

Many Thanks

[EMAIL PROTECTED] mailing list
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Reply via email to