IPSec in the handbook

Nenhum_de_Nos matheusber at gmail.com
Mon Feb 4 18:30:33 UTC 2008


As can be seen below, I tried to change what is needed to make the
IPSec doc in the handbook work again. I had problems as setkey -D
never worked for me until I run ipsec restart (as I never knew that
setkey -f file is teh same thing, I did have troubles). but in the end
all worked fine for me, and I have a pair of 7.0-RC1 as VPN gateways.

I had trouble with racoon files, so I put in the text the files needed
to make it run and marked also what need to be modified (following the
A.B.C.D public IP way).

well, that is what I think is a beggining of what may be the next
version of the text. I'd like to know what you think, and what can be
done. I'm new on this but I'm willing to help this project :)

thanks for the advice on current@,

matheus

---------- Forwarded message ----------
From: George V. Neville-Neil <gnn at neville-neil.com>
Date: Jan 29, 2008 9:34 AM
Subject: Re: IPSEC on 7.0-PRERELEASE
To: Nenhum_de_Nos <matheusber at gmail.com>
Cc: "Bjoern A. Zeeb" <bzeeb-lists at lists.zabbadoz.net>,
freebsd-current at freebsd.org


At Sat, 26 Jan 2008 20:06:03 -0300,

Nenhum_de_Nos wrote:
>
> On Jan 26, 2008 12:33 PM, Bjoern A. Zeeb <bzeeb-lists at lists.zabbadoz.net> wrote:
> > I think I updated all the man pages I was aware of.
> >
> > I am not going to comment on the handbook. I think we should rather
> > remove that section, if noone has updated it (since FreeBSD 4;) and
> > maybe bring it back at a later time.
>
> I do agree that it is outdated, but it helped me though. it is based
> on ipsec-tools, more specific the racoon package, even though racoon2
> is out there. If I may say anything, keep it. is good reference. just
> would make the needed changes to work on ipsec-tools and racoon 1.
> (after reading it a couple of times I coudn't make it work as I never
> guessed there was a need to run /etc/rc.d/ipsec start. and the racoon
> examples are not on the places they say, but I do think it is all
> minor changes.) (I did sent a mail to doc@ for this)
>
> as I went through this guide recently, I could help to renew it. I
> just know nothing specific about racoon 2, but in refreshing that as
> it could run ok on 6.3R and 7.0R I can help :)
>
> George, to whom I should say this ? (as I read above, I think you are
> the guy :) just need to say what is needed :)
>

Do as Mark said and talk to doc@ and keep Bjoern and I cc'd.

Best,
George



-- 
We will call you cygnus,
The God of balance you shall be



More information about the freebsd-doc mailing list