[rofug] errata la probleme ipsec intre FreeBSD si Debian

lefty Wed, 06 Sep 2006 02:17:35 -0700

Am observat o greseala in racoon.conf (am rectificat-o, dar tot nu mere).
Iata cum arata acum


path pre_shared_key "/usr/local/etc/racoon/psk.txt";

#local ipsec interface
listen {
        isakmp FreeBSD [500];
}

#remote ipsec-gw
remote Debian {
   exchange_mode main;
   proposal {
      encryption_algorithm aes;
      hash_algorithm sha1;
      authentication_method pre_shared_key;
      dh_group 2;
   }
}

#local net to remote net
sainfo address 192.168.150.0/24 any address 192.168.100.0/24 any {
   pfs_group 2;
   encryption_algorithm aes;
   authentication_algorithm hmac_sha1;
   compression_algorithm deflate;
}

#local net to remote ipsec-gw
sainfo address 192.168.150.0/24 any address Debian/32 any {
   pfs_group 2;
   encryption_algorithm aes;
   authentication_algorithm hmac_sha1;
   compression_algorithm deflate;
}

#local ipsec-gw to remote net
sainfo address Freebsd/32 any address 192.168.100.0/24 any {
   pfs_group 2;
   encryption_algorithm aes;
   authentication_algorithm hmac_sha1;
   compression_algorithm deflate;
}

#local ipsec-gw to remote ipsec-gw
sainfo address Freebsd any address Debian any {
   pfs_group 2;
   encryption_algorithm aes;
   authentication_algorithm hmac_sha1;
   compression_algorithm deflate;
}

-
lefty


-- 
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.


________________________________________________________
To unsubscribe send a mail to [EMAIL PROTECTED]

[rofug] errata la probleme ipsec intre FreeBSD si Debian

Raspunde prin e-mail lui