* [LARTC] IPSec Questions
@ 2004-03-17 4:50 Mike Diehl (Encrypted email preferred)
0 siblings, 0 replies; only message in thread
From: Mike Diehl (Encrypted email preferred) @ 2004-03-17 4:50 UTC (permalink / raw)
To: lartc
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi all.
I'm trying to migrate from FreeSwan IPSec to the native IPSec stack under
Linux. So, I've got some questions:
I'm trying to setup SAD entries, but the manual says that setkey will not
refer to name2addr to resolve a domain name to an IP address. So, how would
I setup a VPN link between two machines/nets that have dynamic IP addresses?
I was thinking:
setkey add 0.0.0.0/0 example.com ah 15700 "shared_secret"
But, the result is:
The result of line 1: Network is down.
So, here are my questions:
1. What do I put instead of "0.0.0.0/0?"
2. How do I handle it when my IP address changes, as in example.com, here.
Thanx in advance.
- --
Mike
gpg key: http://diehlnet.com/~mdiehl/mdiehl.asc
83AD D927 758D 4BFC A800 0277 4B26 75A4 F0D1 C7EB
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
iD8DBQFAV9kWSyZ1pPDRx+sRArCRAKCxUJ6DVYFILC4MW6DF7lZgWaiqJQCeLfae
wgfdcbA+u1ZdbhBlKf6Dgjo=6Tw7
-----END PGP SIGNATURE-----
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2004-03-17 4:50 UTC | newest]
Thread overview: (only message) (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2004-03-17 4:50 [LARTC] IPSec Questions Mike Diehl (Encrypted email preferred)
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.