Hello Guys,
I'm just new to FreeSWAN so I'll make some questions that can look
stupid, but I've researched and couldnt find answers for them .....
1) After successfully compiled and installed FreeSWAN, I've configured
them. In my case, I'm using preshared secrets to build an IPSEC tunnel
between two machines. No matter what I tried, I always get this error on
messages file:
Apr 22 09:22:34 firewall ipsec__plutorun: 104 "teste" #1: STATE_MAIN_I1:
initiate
Apr 22 09:22:34 firewall ipsec__plutorun: ...could not start conn "teste"
The strangest is that IPSEC tunnel IS working. If i tcpdump traffic on
eth0, I can see only ESP packets and real traffic is going in ipsec0.
Question: should I matter with this error ? Is it possible to fix it ?
I've noticed that Freeswan 1.97 is out ... I'm doing this tests with
1.96/kernel 2.4.18. Upgrading would help ?
2) As I told, I'm using preshared secrets and have enabled IKE. Question
is: the key used for crypto stuff is the one I defined on /etc/ipsec.secrets
or that key is just for 'authenticating' IKE on both machines ?
3) Supposing its used just for IKE stuff ( which I mean is the correct
answer for my question 2 ), which is the size of encription key supplied by
IKE ? I mean, whats the crypto key size ? I know we're using 3DES, but its
96, 128, 256 bits ???
Thanks for your attention and hope hearing from you soon,
Leonardo Rodrigues
Soluções IP
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.3 : Mon Jul 29 2002 - 05:19:52 CEST