help with setting up IPSEC in FreeBSD 12

Rudy crapsh at
Wed Oct 9 07:29:39 UTC 2019

OK, I have the ipsec.conf set up.

# Flush the SPD and the SAD

# Security policies
spdadd any
        -P out ipsec

spdadd any
        -P in ipsec

Now I need keys manages.  Do I still need to set up racoon?  It looks 
like a lot of configuration when I just want to simply setup encryption 
on a gif link from a FreeBSD box to a Mikrotik.  Is there an easier way 
to do this in FreeBSD 12?


On 10/8/19 11:56 PM, Rudy wrote:
> I see an /etc/ipsec.conf in FreeBSD 12 -- how do I set this up?  I 
> have the gif0 all configured, but need help with the IPSEC part.
> Is there a solid (modern) how-to on setting up IPSEC on freebsd? 
> examples of creating keys, and configuring would be great.
> The handbook talks about racoon and ipsec-tools, but that port has 
> been discontinued.
> It needs an update.
> Thanks,
> Rudy
> _______________________________________________
> freebsd-questions at mailing list
> To unsubscribe, send any mail to 
> "freebsd-questions-unsubscribe at"

More information about the freebsd-questions mailing list