Displaying 20 results from an estimated 200 matches similar to: "ipsec - report of success"
2004 Oct 06
7
Re: IPsec problems with tunneled networks
class wrote on 06/10/2004 11:18:48:
> Hello, I have the following situation:
>
> 192.168.176.0/24 ------ A ========== B ------ 192.168.177.0/24
> 192.168.176.2 pop3 ipsec
> racoon
>
>
> policy: (Machine A and B)
> -------
> loc vpn ACCEPT
> vpn loc ACCEPT
> all
2004 Oct 06
7
Re: IPsec problems with tunneled networks
class wrote on 06/10/2004 11:18:48:
> Hello, I have the following situation:
>
> 192.168.176.0/24 ------ A ========== B ------ 192.168.177.0/24
> 192.168.176.2 pop3 ipsec
> racoon
>
>
> policy: (Machine A and B)
> -------
> loc vpn ACCEPT
> vpn loc ACCEPT
> all
2005 May 18
1
IPSec NAT-T woes
Hello,
I am using shorewall 2.2.3-1 and ipsec-tools-0.5.2 on the same machine.
My kernel 2.6.11.10 is patched as needed.
The server has an official IP-Adress (no NAT on this side), but some of
the clients do use NAT.
I figured out that NAT-T connections (RFC 3947) did not work without the
"generic:udp:4500" in /etc/shorewall/tunnels:
# Road-Warriors
ipsecnat net
2014 Apr 05
2
[PATCH] acpi: allow non-optimus setups to load vbios from acpi
Hi, same for me. The screen does not freeze anymore and the boot
succeeds. But now I have this kernel message during boot (for the second
card):
[ 24.382045] pci_pm_runtime_suspend():
nouveau_pmops_runtime_suspend+0x0/0xe0 [nouveau] returns -22
Do you want to have the complete dmesg log? I think this is a new bug.
Your patch works for the previous one, so you can close it.
Yours,
Claas
On
2004 May 11
3
rsync output -vv differs with dry-run option
I'm trying to figure out if a file has changed since the last rsync call. I
use the following command line:
rsync -cvv /mnt/xxx/vol1/dbase/100/kunden.dbf /mnt/label | grep "^total: "
| sed -e 's/.* data=//'
This gives a 0 if the file is unchanged and the file size if the file has
changed. Adding the "dry-run" option "n" to the command line always
2014 Feb 25
13
[Bug 75511] New: Screen freezes during boot with an 3.13 kernel (Arch Linux)
https://bugs.freedesktop.org/show_bug.cgi?id=75511
Priority: medium
Bug ID: 75511
Assignee: nouveau at lists.freedesktop.org
Summary: Screen freezes during boot with an 3.13 kernel (Arch
Linux)
QA Contact: xorg-team at lists.x.org
Severity: normal
Classification: Unclassified
OS: Linux (All)
2004 Oct 01
4
Re: Error: Your kernel and/or iptables does not not support policy match: ipsec
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
claas@rootdir.de wrote:
> Hello,
>
>
> I am trying to get ipsec with kernel 2.6.8.1 and shorewall 2.1.9 running,
> but I still have a problem:
>
> Validating hosts file...
> Error: Your kernel and/or iptables does not not support policy
match: ipsec
>
> I had a look for netfilter patch-o-matic, but I did not find the
2014 Mar 26
3
[PATCH] acpi: allow non-optimus setups to load vbios from acpi
There appear to be a crop of new hardware where the vbios is not
available from PROM/PRAMIN, but there is a valid _ROM method in ACPI.
The data read from PCIROM almost invariably contains invalid
instructions (still has the x86 opcodes), which makes this a low-risk
way to try to obtain a valid vbios image.
Bugzilla: https://bugs.freedesktop.org/show_bug.cgi?id=76475
Signed-off-by: Ilia Mirkin
2004 Oct 06
1
Re: VPN/ipsec naming of interfaces
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
claas@rootdir.de wrote:
> Hello!
>
>
> Machine A
> WAN IP: 123.123.123.111
> LAN IP: 192.168.177.1
>
>
> Machine A wants to connect through an IPsec tunnel to 192.168.176.2
tcp 110 (pop3).
>
> kernel: Shorewall:all2all:REJECT:
> IN= OUT=ppp0 SRC=123.123.123.111 DST=192.168.176.2
> LEN=60 TOS=0x10
2004 Oct 08
2
ipsec policy problem
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
claas@rootdir.de wrote:
> Hello,
>
>
>
> #--- file: policy ---
> #vpn policies:
> loc vpn ACCEPT info
> fw vpn ACCEPT info
> vpn loc ACCEPT info
> vpn fw ACCEPT info
>
> net
2003 Jul 24
1
geoR size limit problem
Hi all,
I tried to produce some kriged surfaces with geoR (latest version). The size
of the grid should be around 900 x 650 cells (what I find is not a very big
grid), and the number of points is around 2500. The command krige.conv
stopped after arround 5 min saying it can not allocate a vector with around
1.5 billion units. Sounds reasonable.
Is there a workaround? How would I partition the
2016 Mar 21
5
IPSec multiple VPN setups
I second Eero's comment, use a new IPSec daemon.
Openswan was forked and became Libreswan. Paul, now a RH employee, was a
main developer for the Openswan project before he and others created the
Libreswan fork.
https://libreswan.org/
EL6 has Openswan
EL7 has Libreswan
Racoon isn't all that fun to work with.
If you have the option, ditch it and EL5 and move to a newer platform
2016 Mar 21
2
IPSec multiple VPN setups
Hi I hope someone can answer something I'm sure is quite basic.
I am following the instructions at
https://www.centos.org/docs/5/html/Deployment_Guide-en-US/ch-vpn.html
On setting up a VPN
The part I am having trouble with is when it show the
/etc/racoon/racoon.conf file.
But it doesn't say whay you have to do with this file.
When I bring up my connection
ifup bicester
I get
RTNETLINK
2016 Mar 21
3
IPSec multiple VPN setups
Centos 5 is still soon end of life. Using it as ipsec gateway is ..
Eero
21.3.2016 7.25 ip. "Mike - st257" <silvertip257 at gmail.com> kirjoitti:
> On Mon, Mar 21, 2016 at 1:17 PM, Mike - st257 <silvertip257 at gmail.com>
> wrote:
>
> > I second Eero's comment, use a new IPSec daemon.
> >
> > Openswan was forked and became Libreswan. Paul, now
2016 Mar 21
2
IPSec multiple VPN setups
Err. Sounds like security nightmare.
21.3.2016 7.47 ip. "Glenn Pierce" <glennpierce at gmail.com> kirjoitti:
> Will ask my boss :) We are hosted on memset so not so easy to update
>
> Thanks
>
> On 21 March 2016 at 17:36, Eero Volotinen <eero.volotinen at iki.fi> wrote:
> > Centos 5 is still soon end of life. Using it as ipsec gateway is ..
> >
2003 Aug 07
1
IPSec delays
I've been using IPSec and racoon alot lately creating tunnels between FreeBSD machines. Everything works as it should once I've got it running. I do however seem to get delays when one, or both ends of the tunnel drop or are rebooted. On reboot, once the machine starts racoon, it takes two or three minutes for the tunnel to come back up. If I stop and restart racoon, it takes only 60
2014 Apr 05
0
[PATCH] acpi: allow non-optimus setups to load vbios from acpi
On Sat, Apr 5, 2014 at 7:53 AM, Claas Lorenz <cllorenz at uni-potsdam.de> wrote:
> Hi, same for me. The screen does not freeze anymore and the boot
Great! And that's without the nouveau.config=NvBios= stuff that you
added as a workaround, right?
> succeeds. But now I have this kernel message during boot (for the second
> card):
>
> [ 24.382045]
2007 May 04
1
Multiple SA in the same IPSec tunnel
Hi,
When a IPSec tunnel is established between two peers, I understand that the
"normal" situation is to have in a given moment two SAs, one for each
direction of the tunnel.
However, in one of my tunnels (peer P1 running GNU/Linux with setkey and
racoon; peer P2 is a Cisco router) there is a large number (around 19) of
SAs established (this has been observed in P1 with
2004 Sep 22
3
2.6 kernel ipsec and shorewall
I set up an ipsec/racoon vpn tunnel test environment. The gateway machines
are 192.168.0.30 and 192.168.0.31 on the external adaptor and 10.0.1.1 and
10.0.2.1 internally. The test workstations are 10.0.1.10 and 10.0.2.10.
The tunnel seems to be working as in 10.0.1.10 can talk to 10.0.2.10 an vice
versa and they can both use the net via NAT, however 192.168.0.30 and
192.168.0.31 cannot directly
2013 Apr 11
2
IKEv2/IPSEC "Road Warrior" VPN Tunneling?
Is there a "cookbook" for setting this up? There are examples for
setting up a tunnel between two fixed-address networks (e.g. a remote
LAN that needs to be "integrated" with a central LAN over IPSec but I
can't find anything addressing the other situation -- remote user(s)
where the connecting IPs are not known in advance, such as a person with
a laptop or smartphone in a