Re: Fwd: (KAME-snap 9012) racoon in the kame project
In article <6.2.1.2.0.20050421090724.04cc1668@64.7.153.2> you wrote:
> FYI, looks like support for Racoon is ending. Does anyone have any
> experience with the version in ipsec-tools ?
I have been using it with FreeBSD 4.11. The only issues I have ran
into is that some of its debug messages use %zu and %zd. The %z
isn't know by 4.x libc and causes a core dump. This issue is easily
fixed with sed. Since 5.x know about %z, this should be a non-issue
for more current versions of FreeBSD.
The ipsec-tools version has support for NAT-T if the kernel has
support. There exist patches for use with the IPSEC option of 4.x
at ipsec-tools source forge site. Yesterday I posted updated patches
to support FAST_IPSEC under 4.11. I had made patches for 5.x but
accidently clobered them. The port is very straight forward.
To save you some time looking for them, The FreeBSD kernel patches
can be found here:
http://cvs.sourceforge.net/viewcvs.py/ipsec-tools/htdocs/
Larry
--
------------------------------------------------------------------------
Larry Baird | http://www.gta.com
Global Technology Associates, Inc. | Orlando, FL
Email: lab@gta.com | TEL 407-380-0220, FAX 407-380-6080
_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
討論串 (同標題文章)
完整討論串 (本文為第 2 之 5 篇):