Markus Wernig wrote: > Renaud Allard wrote: > > >> It seems you just forgot to load your rules. >> Just add "ipsecctl -f /etc/ipsec.conf" in the rc.local of both your >> firewalls and everything should just work fine. >> > > > Hi > > I've tried to load the rules by hand with "ipsecctl -f /etc/ipsec.conf" > - to no avail. On the other hand I seemed to understand that with > "ipsec=YES" in /etc/rc.conf.local this was done automatically. > > I've tried it nevertheless, unfortunately no joy ;-) > > thx /markus > >
for god's sake (it likes it warm and served by sexy japanese women), please use google: http://www.securityfocus.com/infocus/1859 turn off pf on both machines and follow the instructions with the minor modifications to /etc/ispec.conf that are req'd for your setup. use isakpmd's debugging switches to see what is going on if it doesn't work. isakmpd -dDA=10 gives mostly useful output, start there and read the isakmpd manpage.
