help with setting up IPSEC in FreeBSD 12
Rudy
crapsh at monkeybrains.net
Wed Oct 9 07:29:39 UTC 2019
OK, I have the ipsec.conf set up.
# Flush the SPD and the SAD
spdflush;
flush;
# Security policies
spdadd 10.1.0.0/24 10.1.87.0/24 any
-P out ipsec
esp/tunnel/172.17.40.18-172.17.41.203/require;
spdadd 10.1.87.0/24 10.1.0.0/24 any
-P in ipsec
esp/tunnel/172.17.41.203-172.17.40.18/require;
Now I need keys manages. Do I still need to set up racoon? It looks
like a lot of configuration when I just want to simply setup encryption
on a gif link from a FreeBSD box to a Mikrotik. Is there an easier way
to do this in FreeBSD 12?
Rudy
On 10/8/19 11:56 PM, Rudy wrote:
>
> I see an /etc/ipsec.conf in FreeBSD 12 -- how do I set this up? I
> have the gif0 all configured, but need help with the IPSEC part.
>
> Is there a solid (modern) how-to on setting up IPSEC on freebsd?
> examples of creating keys, and configuring would be great.
>
> The handbook talks about racoon and ipsec-tools, but that port has
> been discontinued.
> https://www.freebsd.org/doc/en/books/handbook/ipsec.html
> It needs an update.
>
>
> Thanks,
> Rudy
> _______________________________________________
> freebsd-questions at freebsd.org mailing list
> https://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to
> "freebsd-questions-unsubscribe at freebsd.org"
>
More information about the freebsd-questions
mailing list