Hello everybody, Since 4.7 has been released, are there any changes in -current that could affect ipsec?
here is my 1.2.3.4's ipsec.conf ike esp from 192.168.10.0/24 to 192.168.3.4/30 peer 5.6.7.8 ike esp from 1.2.3.4 to 5.6.7.8 on 5.6.7.8: ike passive esp from 192.168.3.4/30 to 192.168.10.0/24 peer 1.2.3.4 ike passive esp from 5.6.7.8 to 1.2.3.4 on 1.2.3.4 the system is 4.6-rel on 5.6.7.8 the system is 4.7-current somewhere 1 week old pf is disabled on both systems on the moment of test, so it doesn't interfere. isakmpd -DA=9 -K -p 3000 is running on both systems. in tcpdump i am able to see traffic between the two isakmpd's. ipsecctl -sa shows that no sa's got established... -- With best regards, Gregory Edigarov