Re: VPN Connection from 4.1 to WatchGuard

2007-08-27 Thread Claer
On Thu, Aug 23 2007 at 58:21, James Lepthien wrote: > Hi again, Hi, > just for your information and if anybody runs into the same problem. I > found outr that there are a lot of sysctl values for IPSec which can be > changed so that it is possible for me to not use the default timeout of > 8640

Re: VPN Connection from 4.1 to WatchGuard

2007-08-23 Thread James Lepthien
Hi again, just for your information and if anybody runs into the same problem. I found outr that there are a lot of sysctl values for IPSec which can be changed so that it is possible for me to not use the default timeout of 86400. Have a look: # sysctl -a | grep ipsec net.inet.ip.ipsec-e

Re: VPN Connection from 4.1 to WatchGuard

2007-08-18 Thread James Lepthien
Hello again, Am 15.08.2007 um 23:20 schrieb James Lepthien: Hi there, Am 15.08.2007 um 22:24 schrieb Hans-Joerg Hoexer: On Thu, Aug 09, 2007 at 02:22:31AM +0200, James Lepthien wrote: Hi, I have set up a vpn from my OpenBSD Box (4.1-current) to our company WatchGuard X700. My problem

Re: VPN Connection from 4.1 to WatchGuard

2007-08-15 Thread James Lepthien
Hi there, Am 15.08.2007 um 22:24 schrieb Hans-Joerg Hoexer: On Thu, Aug 09, 2007 at 02:22:31AM +0200, James Lepthien wrote: Hi, I have set up a vpn from my OpenBSD Box (4.1-current) to our company WatchGuard X700. My problem is that the re-keying isn't always working and my tunnel does not

Re: VPN Connection from 4.1 to WatchGuard

2007-08-15 Thread Hans-Joerg Hoexer
On Thu, Aug 09, 2007 at 02:22:31AM +0200, James Lepthien wrote: > Hi, > > I have set up a vpn from my OpenBSD Box (4.1-current) to our company > WatchGuard X700. My problem is that the re-keying > isn't always working and my tunnel does not come up if I send traffic to > the destination network.

Re: VPN Connection from 4.1 to WatchGuard

2007-08-11 Thread James Lepthien
Hi, Am 11.08.2007 um 14:19 schrieb [EMAIL PROTECTED]: Aug 9 01:52:40 voldemort isakmpd[20491]: attribute_unacceptable: ENCRYPTION_ALGORITHM: got 3DES_CBC, expected AES_CBC It seems your watchguard is sending 3DES, but your OBSD box is set to accept AES. The both have to be set to use the s

VPN Connection from 4.1 to WatchGuard

2007-08-08 Thread James Lepthien
Hi, I have set up a vpn from my OpenBSD Box (4.1-current) to our company WatchGuard X700. My problem is that the re-keying isn't always working and my tunnel does not come up if I send traffic to the destination network. I must manually restart the isakmpd and then start the tunnel by using