Re: HOW TO Enable IPSec for FreeBSD.......???

• Previous message: Juan Priotti: "Re: HOW TO Enable IPSec for FreeBSD.......???"
• In reply to: mohan chandra: "Re: HOW TO Enable IPSec for FreeBSD.......???"
• Next in thread: Alexander Leidinger: "Re: HOW TO Enable IPSec for FreeBSD.......???"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Wed, 18 May 2005 09:45:13 +0200
To: mohan chandra <mohanchandra_01@yahoo.co.in>

I wrote an IPSec HowTo
http://www.ezunix.org/modules.php?op=modload&name=Sections&file=index&req=viewarticle&artid=75&page=1

You don't need any patches.
Try to use google.com, you'd be surprised how much you can find on the internet...

On Wed, 18 May 2005 08:31:22 +0100 (BST)
mohan chandra <mohanchandra_01@yahoo.co.in> wrote:

> Hi Danil,
>
> Thanks to all for replying..
>
> I executed (build) the kernel with hte propely
> commands by changing the "GENERIC" with "MYKERNEL" at
> the "ident" option.
>
> #commands used are
> make buildkernel KERNCONF=MYKERNEL
> make installkernel KERNCONF=MYKERNEL && reboot
>
> But still ipsec support is not there. If ipsec exists
> the file ipsec.conf should be there under " /etc "
> folder,but it is not there..
>
> I found ' MYKERNEL ' folder under the following
> directory:
>
> :/usr/obj/usr/src/sys/MYKERNEL
>
> It contains so many object files and C-header files,
> In that ipsec.o, ipsec.h and other ipsec related file
> like esp,ah etc., are appearing.
>
> So with this can I do anything to add ipsec, Please
> reply me soon.
>
> Also I tried using 'setkey' to find the ipsec support
> with following commands and I got the following
> output:
> -------------------------
> mohan# setkey -D
> No SAD entries.
> mohan# setkey -DP
> No SPD entries.
> mohan#
> --------------------------
>
> And atlast can I use any ipsec patches for FreeBSD.
> So, please suggest me any sort of solution to get
> ipsec on my FreeBSD (4.11)
>
> with Regards,
>
> Mohan..
>
>
> --- "Danil V. Gerun" <news@625.ru> wrote:
> > mc> /usr/src/sys/i386/conf/MYKERNEL
> > ...
> > mc> # cd /usr/src
> > mc> # make buildkernel KERNCONF=IPSEC && make
> > mc> installkernel KERNCONF=IPSEC
> >
> > If this is what you've really done, then you should
> > do
> >
> > make buildkernel KERNCONF=MYKERNEL
> > make installkernel KERNCONF=MYKERNEL
> >
> >
> > And you can also change the 'ident' option in the
> > kernel to the
> > ident MYKERNEL
> >
> >
> >
> > --
> > Best regards, Danil V. Gerun
> > danil@hate.spam.625.ru
> >
> > _______________________________________________
> > freebsd-security@freebsd.org mailing list
> >
> http://lists.freebsd.org/mailman/listinfo/freebsd-security
> > To unsubscribe, send any mail to
> > "freebsd-security-unsubscribe@freebsd.org"
>
>
> > mohan chandra wrote:
> > Hi,
> >
> > I have tried to enable IPSec support for my
> > FreeBSD( 4.11-RELEASE) system.
> > First, I copied the generic kernel configuration
> file
> > to a file I called MYKERNEL:
> >
> > #cp /usr/src/sys/i386/conf/GENERIC
> > /usr/src/sys/i386/conf/MYKERNEL
> >
> >
> > Then, I added the following three lines to the
> options
> > section of /usr/src/sys/i386/conf/MYKERNEL:
> >
> > options IPSEC
> > options IPSEC_ESP
> > options IPSEC_DEBUG
> >
> > After that I recompile the kernel with the following
> > command:
> >
> > # cd /usr/src
> > # make buildkernel KERNCONF=IPSEC && make
> > installkernel KERNCONF=IPSEC
> >
> > And also installed IKE support on my system with the
> > following command using racoon:
> >
> > cd /usr/ports/security/racoon
> > make install clean
> >
> > Afterall completion of build, still IPSec support is
> > not appearing in the system. Suggest me,is there any
> > configuration or modifications need to be done?
> >
> > Please, anyone give me some suggestion to enable
> IPSec
> > support on FreeBSD.
> > Any Help will be very much appeciated..
> >
> > Thanx,
> >
> > Regards,
> > Mohan..
>
> ________________________________________________________________________
> Yahoo! India Matrimony: Find your life partner online
> Go to: http://yahoo.shaadi.com/india-matrimony
> _______________________________________________
> freebsd-security@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-security
> To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"

• Previous message: Juan Priotti: "Re: HOW TO Enable IPSec for FreeBSD.......???"
• In reply to: mohan chandra: "Re: HOW TO Enable IPSec for FreeBSD.......???"
• Next in thread: Alexander Leidinger: "Re: HOW TO Enable IPSec for FreeBSD.......???"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: HOW TO Enable IPSec for FreeBSD.......??? ... I executed the kernel with hte propely ... commands by changing the "GENERIC" with "MYKERNEL" at ... But still ipsec support is not there. ... Also I tried using 'setkey' to find the ipsec support ... (FreeBSD-Security) Re: HOW TO Enable IPSec for FreeBSD.......??? ... HOW TO Enable IPSec for FreeBSD.......??? ... > I executed the kernel with hte propely ... > But still ipsec support is not there. ... (FreeBSD-Security) Re: Attacks on IPsec ... > group disown what is only now starting to be deployed. ... (which in turn implies replacing everybody's kernel). ... advantage over end-to-end ipsec ... ... communicating for the first time with a complete stranger (aka the ... (sci.crypt) Debugging with memguard... ... I'm trying to track down a memory issue with IPsec in CURRENT. ... PS Kernel Config attached but it's not very interesting I think. ... # Power management support ... (freebsd-current) Potential IPSec DoS/Kernel Panic with 2.6.13 ... I've found what I believe is a potential DoS condition in IPSec using Debian ... Custom Linux kernel 2.6.13 ... This oversize ping packet seems to repeatedly crash the ... (Linux-Kernel)