Horn
Gesendet: Donnerstag, 11. Januar 2007 18:15
An: misc@openbsd.org
Betreff: VPN/IPSEC trouble with Checkpoint
Hi all!
I have a problem with a VPN tunnel.
The VPN is set between an OpenBSD 4.0 GENERIC and a Checkpoint NG FP3.
When I etablish the tunnel all is okay for a while
Hi all!
I have a problem with a VPN tunnel.
The VPN is set between an OpenBSD 4.0 GENERIC and a Checkpoint NG FP3.
When I etablish the tunnel all is okay for a while. But after a moment
(variable) the tunnel break because a NO_PROPOSAL_CHOSEN. The problem
appear to come from the OpenBSD side
Are you sure it's not a problem with fp3? Iirc, there were some
interoperability issues with that version. Latest patches for FP3?
On 1/11/07, Olivier Horn [EMAIL PROTECTED] wrote:
Hi all!
I have a problem with a VPN tunnel.
The VPN is set between an OpenBSD 4.0 GENERIC and a Checkpoint NG
If you are willing to try ipsec.conf instead of isakmpd.conf. I use the
following for a VPN with a Checkpoint NG.
ike esp from a.a.a.a/24 to b.b.b.b/20 \
local x.x.x.x peer y.y.y.y \
main auth hmac-md5 enc 3des group grp2 \
quick auth hmac-md5 enc 3des group none \
psk
On 17/12/06, viq [EMAIL PROTECTED] wrote:
On 17/12/06, Mathieu Sauve-Frankel [EMAIL PROTECTED] wrote:
On Sun, Dec 17, 2006 at 02:16:48PM +0100, viq wrote:
Yes, again... I am trying to set up VPN using IPSec, right now very
basic setup, and it doesn't work as expected.
Hosts being involved
Yes, again... I am trying to set up VPN using IPSec, right now very
basic setup, and it doesn't work as expected.
Hosts being involved are keibi that acts as server, and trying to
connect to it laptop sentan.
ipsec.conf on keibi:
ike passive esp from any to any \
srcid [EMAIL PROTECTED] dstid
On Sun, Dec 17, 2006 at 02:16:48PM +0100, viq wrote:
Yes, again... I am trying to set up VPN using IPSec, right now very
basic setup, and it doesn't work as expected.
Hosts being involved are keibi that acts as server, and trying to
connect to it laptop sentan.
there's an error in ipsecctl in
On 17/12/06, Mathieu Sauve-Frankel [EMAIL PROTECTED] wrote:
On Sun, Dec 17, 2006 at 02:16:48PM +0100, viq wrote:
Yes, again... I am trying to set up VPN using IPSec, right now very
basic setup, and it doesn't work as expected.
Hosts being involved are keibi that acts as server, and trying to
On 17/12/06, viq [EMAIL PROTECTED] wrote:
On 17/12/06, Mathieu Sauve-Frankel [EMAIL PROTECTED] wrote:
On Sun, Dec 17, 2006 at 02:16:48PM +0100, viq wrote:
Yes, again... I am trying to set up VPN using IPSec, right now very
basic setup, and it doesn't work as expected.
Hosts being involved
Ok, I think I solved my own problem and there appears to be a bug in
isakmpd.
Apparently isakmpd was having trouble matching the SAs when key lifes
were specified by both time (seconds) and traffic quantity (kilobytes).
The relevant log information is included post signature. The
configuration
I've been banging my head against this problem for a few days and was
wondering (hoping) someone around here has an answer. I'm trying to set
up a VPN with OpenBSD on my end, and a Cisco PIX on the other. The PIX
is hiding behind a NAT firewall (God only knows why - I asked nicely and
I'm not
11 matches
Mail list logo