Meine eth0 am Gateway (links)
Code: Alles auswählen
eth0 Protokoll:Ethernet Hardware Adresse 00:0D:88:2A:53:E2
inet Adresse:198.50.10.10 Bcast:198.50.10.255 Maske:255.255.255.0
inet6 Adresse: fe80::20d:88ff:fe2a:53e2/64 Gültigkeitsbereich:Verbindung
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:4916 errors:0 dropped:0 overruns:0 frame:0
TX packets:3617 errors:0 dropped:0 overruns:0 carrier:0
Kollisionen:0 Sendewarteschlangenlänge:1000
RX bytes:652882 (637.5 KiB) TX bytes:876081 (855.5 KiB)
Interrupt:5 Basisadresse:0x300
Code: Alles auswählen
path pre_shared_key "/etc/racoon/psk.txt";
#Netz 2
remote 192.168.0.10 {
exchange_mode main;
proposal {
encryption_algorithm 3des;
hash_algorithm md5;
authentication_method pre_shared_key;
dh_group modp1024;
}
}
sainfo address 198.50.10.0/24 any address 192.168.0.0/24 any {
pfs_group modp768;
encryption_algorithm 3des;
authentication_algorithm hmac_md5;
compression_algorithm deflate;
}
Code: Alles auswählen
#!/sbin/setkey -f
#Loesche Sad und SPD
flush;
spdflush;
#Richtlinien für den Tunnel
spdadd 192.168.0.0/24 198.50.10.0/24 any -P in ipsec
esp/tunnel/192.168.0.10-198.50.10.10/require;
spdadd 198.50.10.0/24 192.168.0.0/24 any -P out ipsec
esp/tunnel/198.50.10.10-192.168.0.10/require;
Code: Alles auswählen
2004-06-07 11:19:41: INFO: @(#)ipsec-tools 0.3.1 (http://ipsec-tools.sourceforge.net)
2004-06-07 11:19:41: INFO: @(#)This product linked OpenSSL 0.9.7d 17 Mar 2004 (http://www.openssl.org/)
2004-06-07 11:19:43: ERROR: failed to bind to address fe80::20d:88ff:fe2a:53e2%253[500] (No such device).
2004-06-07 11:19:43: INFO: ::1[500] used as isakmp port (fd=6)
2004-06-07 11:19:43: INFO: 198.50.10.10[500] used as isakmp port (fd=7)
2004-06-07 11:19:43: INFO: 127.0.0.1[500] used as isakmp port (fd=8)
Danke schonmal brockz