Re: "FreeS/WAN - isakmpd" it works!! :)

[Victor <victord_(_at_)_paid_(_dot_)_com>]

goony wrote:
> YEAHH!!! :) It works!!!! :)) 
> I've found a error in isakmpd.policy.
> Thanks to Hakan Olsson's post: http://archives.neohapsis.com/archives/openbsd/2001-09/0989.html
> now I use this policy:
>
> Keynote-version: 2
> Authorizer: "POLICY"
> Licensees: "passphrase:123456789012345"
> Conditions: app_domain == "IPsec policy" &&
>             esp_present == "yes" &&
>             esp_enc_alg != "null" -> "true";
>
> This is result:
>
> 11:12:52.861566 hate.intranet > 192.168.11.192: ESP(spi=0x97c9ce93,seq=0x1a4)
> 11:12:52.862631 192.168.11.192 > hate.intranet: ESP(spi=0x4e030db4,seq=0x1a4)
> 11:12:53.871710 hate.intranet > 192.168.11.192: ESP(spi=0x97c9ce93,seq=0x1a5)
> 11:12:53.872782 192.168.11.192 > hate.intranet: ESP(spi=0x4e030db4,seq=0x1a5)
> 11:12:54.881988 hate.intranet > 192.168.11.192: ESP(spi=0x97c9ce93,seq=0x1a6)
> 11:12:54.883068 192.168.11.192 > hate.intranet: ESP(spi=0x4e030db4,seq=0x1a6)
> 11:12:55.892303 hate.intranet > 192.168.11.192: ESP(spi=0x97c9ce93,seq=0x1a7)
> 11:12:55.893422 192.168.11.192 > hate.intranet: ESP(spi=0x4e030db4,seq=0x1a7)
>
> In the next days I would report my experiment on my web pages for comments.
> Sorry for my bad english and my disturb. Thanks at all for your helps! :)

Would you be able to post your config steps and config files? I think it 
would be of benefit to those trying to do the same.