[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

(racoon 845) Help needed for racoon in transport mode

To: racoon@kame.net
Subject: (racoon 845) Help needed for racoon in transport mode
From: Michael Ragusa <michael.ragusa@ai.net>
Date: Mon, 01 Nov 2004 06:26:56 -0500
Delivered-to: racoon-archive@kame.net
Delivered-to: racoon-outgo@kame.net
Delivered-to: racoon@orange.kame.net
Delivered-to: racoon@kame.net
Reply-to: racoon@kame.net
Sender: owner-racoon@kame.net
User-agent: Mozilla Thunderbird 0.7.3 (Windows/20040803)

Ok I finally got racoon working in transport mode via x509 certs in freebsd and windows xp (go me!) BUT now the current issue is that i cant not use services to my test server my current setup is like this

Windows XP (internal LAN) ----- Linksys router (*BEFW11S4*) ----- INTERNET ----------- test server

now i can successfully ping the test server from both my freebsd box and my windows xp box but when i go to ssh or access the web server when ipsec is enabled everything times out

the test server is running racoon-20040818a and the freebsd internal box runs the same version of racoon and both are running on the freebsd 4.8 the spdkeys entry on the server is 0.0.0.0 -P in/out ipsec esp/transport//use as this is the correct way to do it when using x509 certs with DHCP clients ( at least so i have read)

the connections establish successfully but everything other than pings will time out and i see nothing in the logs any suggestions or ideas or help is much appreciated

thanks

Prev by Date: (racoon 844) Re: auth fail in IPv4 ESP
Next by Date: (racoon 846) Racoon NAT-T Transport Mode
Previous by thread: (racoon 843) Complex configuration examples/expert opinion or just interconnection matrix.
Next by thread: (racoon 846) Racoon NAT-T Transport Mode
Index(es):
- Date
- Thread