IPSec Questions

Linux Advanced Routing and Traffic Control

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi all.

I'm trying to migrate from FreeSwan IPSec to the native IPSec stack under
Linux.  So, I've got some questions:

I'm trying to setup SAD entries, but the manual says that setkey will not
refer to name2addr to resolve a domain name to an IP address.  So, how would
I setup a VPN link between two machines/nets that have dynamic IP addresses?

I was thinking:

setkey add 0.0.0.0/0 example.com ah 15700 "shared_secret"

But, the result is:
The result of line 1: Network is down.

So, here are my questions:

1. What do I put instead of "0.0.0.0/0?"

2. How do I handle it when my IP address changes, as in example.com, here.

Thanx in advance.
- -- 
Mike
gpg key: http://diehlnet.com/~mdiehl/mdiehl.asc
83AD D927 758D 4BFC A800 0277 4B26 75A4 F0D1 C7EB
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFAV9kWSyZ1pPDRx+sRArCRAKCxUJ6DVYFILC4MW6DF7lZgWaiqJQCeLfae
wgfdcbA+u1ZdbhBlKf6Dgjo=
=6Tw7
-----END PGP SIGNATURE-----
_______________________________________________
LARTC mailing list / LARTC@xxxxxxxxxxxxxxx
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/


[Index of Archives]     [LARTC Home Page]     [Netfilter]     [Netfilter Development]     [Network Development]     [Bugtraq]     [GCC Help]     [Yosemite News]     [Linux Kernel]     [Fedora Users]
  Powered by Linux