[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: "FreeS/WAN - isakmpd" it works!! :)



YEAHH!!! :) It works!!!! :)) 
I've found a error in isakmpd.policy.
Thanks to Hakan Olsson's post: http://archives.neohapsis.com/archives/openbsd/2001-09/0989.html
now I use this policy:

Keynote-version: 2
Authorizer: "POLICY"
Licensees: "passphrase:123456789012345"
Conditions: app_domain == "IPsec policy" &&
            esp_present == "yes" &&
            esp_enc_alg != "null" -> "true";

This is result:

11:12:52.861566 hate.intranet > 192.168.11.192: ESP(spi=0x97c9ce93,seq=0x1a4)
11:12:52.862631 192.168.11.192 > hate.intranet: ESP(spi=0x4e030db4,seq=0x1a4)
11:12:53.871710 hate.intranet > 192.168.11.192: ESP(spi=0x97c9ce93,seq=0x1a5)
11:12:53.872782 192.168.11.192 > hate.intranet: ESP(spi=0x4e030db4,seq=0x1a5)
11:12:54.881988 hate.intranet > 192.168.11.192: ESP(spi=0x97c9ce93,seq=0x1a6)
11:12:54.883068 192.168.11.192 > hate.intranet: ESP(spi=0x4e030db4,seq=0x1a6)
11:12:55.892303 hate.intranet > 192.168.11.192: ESP(spi=0x97c9ce93,seq=0x1a7)
11:12:55.893422 192.168.11.192 > hate.intranet: ESP(spi=0x4e030db4,seq=0x1a7)

In the next days I would report my experiment on my web pages for comments.
Sorry for my bad english and my disturb. Thanks at all for your helps! :)

  soon for new "experiments" :),	
		goony

-- 
goony <goony_(_at_)_OpenBEER_(_dot_)_it>
"Beer OpenBSD User Group" founder - http://www.OpenBEER.it
KeyID: 1024D/1CDA1B3D
Fingerprint: CDF5 5246 D424 CF61 0330  A516 93F9 4D38 1CDA 1B3D
GnuPG PubKey: http://www.OpenBEER.it/keys/goony.gpg



Visit your host, monkey.org