OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
Subject: Re: pipsecd and KAME
From: f.johan.beisser (jancaustic.org)
Date: Fri Feb 04 2000 - 14:50:39 CST

thanks!

this is just what i'm looking for..

pipsecd supports the following encryption algorythms:
        blowfish_cbc, cast_cbc, des_cbc, des3_cbc, null

KAME has these:
        des-cbc, 3des-cbc, simple, blowfish-cbc, cast128-cbc
        rc5-cbc, des-deriv, 3des-deriv

each of these has certain key requirements, usually between 40 and 2048
bits for the keys.

from KAME (4.0-current), the setkey man pages gives the basic manual setup
of the ipsec keysets.

other resources:

http://www.kame.net/newsletter/19980626/

which seems to be the version of IPsec that 4.0 is using (vs the most
recent version of KAME).

-- jan

ERRATA: when i have this working, i'll post it to the list.. thanks for
your help so far.

On Fri, 4 Feb 2000, Matthew Reimer wrote:

> "f.johan.beisser" wrote:
> >
> > has anyone successfully run pipesecd and kame for IPsec tunneling?
> >
> > i'm kind of curious about this, i've got a freebsd 4.0 machine, and a
> > simple little -stable box taht i'd like to test this with..
> >
> > any advice/help would be appreciated..
>
> I'm trying to get this to work too. I haven't yet, but this indicates
> that it's possible:
>
> http://www.hsc.fr/ressources/presentations/ipsec99/ipsec99020.html
>
> Matt
>
>
> To Unsubscribe: send mail to majordomoFreeBSD.org
> with "unsubscribe freebsd-security" in the body of the message
>

 +-----/ f. johan beisser /------------------------------+
  email: jan[at]caustic.org web: http://www.caustic.org/~jan
   "knowledge is power. power corrupts. study hard, be evil."

To Unsubscribe: send mail to majordomoFreeBSD.org
with "unsubscribe freebsd-security" in the body of the message