Re: IPSEC over wireless link

Lars Eggert Thu, 05 Dec 2002 10:34:11 -0800

Pieter Westland wrote:

At home I am trying to set the following up properly:

laptop -- (wireless, ipsec) --- gateway (4.7 STABLE) -- (PPPoE) -- Internet

Laptop has 10.0.0.3, gateway has 10.0.0.1 on the internal sid, rl0.

...

setkey -c << EOF
spdadd 10.0.0.3 0.0.0.0/0 any -P in ipsec esp/transport//require;
spdadd 10.0.0.0/0 10.0.0.3 any -P out ipsec esp/transport//require;
EOF

These look fishy. Shouldn't they simply be:

spdadd 10.0.0.3 10.0.0.1 any -P in ipsec esp/transport//require;
spdadd 10.0.0.1 10.0.0.3 any -P out ipsec esp/transport//require;

Lars
--
Lars Eggert <[EMAIL PROTECTED]>           USC Information Sciences Institute

smime.p7s
Description: S/MIME Cryptographic Signature

Re: IPSEC over wireless link

Reply via email to