IPv6 readyNote: This archive passes through spamassassin. Every mail marked with the subject "*****SPAM*****" has exceed a certain threshold of spam-like behaviour.

RE: [Users] IPSec over PPPoE

From: Barry, Christopher (cbarry_at_infiniconsys.com)
Date: Tue Jul 16 2002 - 18:00:49 CEST

Thanks Charles.
        I'm running the patched kernel in Bering and the PPPoE stuff seems to work fine. It's got Shorewall which I also use at work and AH/ESP ports are opened up automagically when the tunnels file is used. I've dropped the mtu of ipsec0 down to 1412, but the issue seems to be that ipsec cannot identify the ppp0 device or it's ip address. Could this be related to NOT using RP's implementation? Is it something intrinsic to the Bering release? I notice a space after your description of ipsec0=ppp0 and before the closing quote - is that on purpose or simply a typo?

PS Charles - Thank you for replying and indeed for all your good work - the Internet community is much richer from your efforts.

Thanks, 

--
Christopher Barry
Manager of Information Systems
InfiniCon Systems
http://www.infiniconsys.com
office:610.233.ISIS (4747)
direct:610.233.4870
cell:267.879.8321

> -----Original Message-----
> From: Charles Steinkuehler [mailto:cstein_at_newtek.com]
> Sent: Tuesday, July 16, 2002 11:43 AM
> To: Barry, Christopher; users_at_lists.freeswan.org
> Subject: Re: [Users] IPSec over PPPoE
> 
> 
> > I'm using LEAF at home to connect to the Internet via Verizon DSL.
> They use PPPoE (really sux!), and I am having a hell of a time getting
> FreeS/WAN to function over this link. I just moved and have 
> to get this
> going. I had a permanent tunnel to work before using my old ISP
> (speakeasy - they're great!) no problems at all. Can anyone 
> point me at
> some good documentation about how to get this up and running?
> 
> I've had success running FreeS/WAN over PPPoE using the Dachstein-CD
> version of LEAF, which includes Roaring Penguin 2.6, pppd 2.3.11, and
> FreeS/WAN 1.91.  The only change I had to make for FreeS/WAN 
> was to set
> interfaces="ipsec0=ppp0 " in ipsec.conf once I got the PPPoE stuff
> running.
> 
> Keep in mind that it's been reported some ISP's filter IPSec 
> traffic on
> "home-user" accounts, and most LEAF systems default firewall 
> rules will
> block the required AH / ESP / UDP port 500 traffic, so make sure your
> problem's really with FreeS/WAN before banging your head against the
> wall too much :-)
> 
> Charles Steinkuehler
> http://lrp.steinkuehler.net
> http://c0wz.steinkuehler.net (lrp.c0wz.com mirror)
> 
> 
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users

This archive was generated by hypermail 2.1.3 : Mon Jul 29 2002 - 05:20:23 CEST