-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi all. I''m trying to migrate from FreeSwan IPSec to the native IPSec stack under Linux. So, I''ve got some questions: I''m trying to setup SAD entries, but the manual says that setkey will not refer to name2addr to resolve a domain name to an IP address. So, how would I setup a VPN link between two machines/nets that have dynamic IP addresses? I was thinking: setkey add 0.0.0.0/0 example.com ah 15700 "shared_secret" But, the result is: The result of line 1: Network is down. So, here are my questions: 1. What do I put instead of "0.0.0.0/0?" 2. How do I handle it when my IP address changes, as in example.com, here. Thanx in advance. - -- Mike gpg key: http://diehlnet.com/~mdiehl/mdiehl.asc 83AD D927 758D 4BFC A800 0277 4B26 75A4 F0D1 C7EB -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (GNU/Linux) iD8DBQFAV9kWSyZ1pPDRx+sRArCRAKCxUJ6DVYFILC4MW6DF7lZgWaiqJQCeLfae wgfdcbA+u1ZdbhBlKf6Dgjo=6Tw7 -----END PGP SIGNATURE----- _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/