LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 05-21-2010, 01:07 AM   #1
renuaseri
Member
 
Registered: Mar 2009
Posts: 39

Rep: Reputation: 15
racoon ipsec enable machin not able to ping each other


hi all

i have two laptop of ip-address --10.114.12.27 & 10.114.12.28.
i have install ipsec-tools & racoon on both laptop.
i m using ubuntu os.

now i want to use automatic keying by racoon.
for this i have put these lines in /etc/racoon/racoon.conf

path pre_shared_key "/etc/racoon/psk.txt";

remote anonymous
{
exchange_mode aggressive,main;
doi ipsec_doi;
situation identity_only;

my_identifier address;

lifetime time 2 min; # sec,min,hour
initial_contact on;
proposal_check obey; # obey, strict or claim

proposal {
encryption_algorithm 3des;
hash_algorithm sha1;
authentication_method pre_shared_key;
dh_group 2 ;
}
}

sainfo anonymous
{
pfs_group 1;
lifetime time 2 min;
encryption_algorithm 3des ;
authentication_algorithm hmac_sha1;
compression_algorithm deflate ;
}

and my psk.txt of 10.114.12.28 having this:
10.114.12.27 cedt1234

and my psk.txt of 10.114.12.27 having this:
10.114.12.28 cedt1234

and /etc/ipsec-tools.conf have these line On host 10.114.12.27:

#!/sbin/setkey -f
flush;
spdflush;

spdadd 10.114.12.27 10.114.12.28 any -P out ipsec
esp/transport//require;

spdadd 10.114.12.27 10.114.12.28 any -P in ipsec
esp/transport//require;


and when i usint "racoon -F" and try to ping these two laptop , it is not pinging at all.

and alse "racoon -F" does not show any ESP and AH

plz help me .......i am new in this ipsec security.
 
Old 05-23-2010, 05:55 AM   #2
AwesomeMachine
Senior Member
 
Registered: Jan 2005
Location: USA and Italy
Distribution: Debian testing/sid; OpenSuSE; Fedora
Posts: 1,923

Rep: Reputation: 278Reputation: 278Reputation: 278
What you're working with is very involved. You should read this: http://www.ipsec-howto.org/x304.html
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
help with racoon/ipsec cizzi Linux - Security 1 10-25-2009 04:20 PM
ipsec-tools: How Racoon works? zivota Linux - Software 1 09-02-2009 12:48 AM
ipsec (racoon, setkey) and traffic supaflyzzz Linux - Security 3 02-24-2009 07:58 AM
Need help creating an IPSec/Racoon script s0n|k Linux - Networking 0 01-19-2007 10:09 AM
IPsec : Problem with racoon HaPagan Linux - Security 1 11-30-2005 01:23 AM


All times are GMT -5. The time now is 06:42 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration