Stuart Henderson schrieb: > On 2007/10/11 10:18, [EMAIL PROTECTED] wrote: >> i want to include the functionality of our old Linksys BEFVP41 into our new >> OpenBSD Router. >> First step: PSK >> One line like >> ike passive esp tunnel from any to <localnet> main ... quick ... psk >> <foobar> >> in ipsec.conf works. >> If I put in a second line with another PSK, only the second one works. >> How do I put in multiple PSK into ipsec.conf? > > With main mode, you need to list IP addresses, but that won't > help you for dynamic IP. > > It might be possible with aggressive mode, but aggressive+psk is > a poor combination. > > You should just setup public-key instead. > Ok, thank you. Any hints for trapdoors to avoid?
Arnim
