Re: [Ipsec-tools-devel] IPSec + racoon --> ERROR: no suitable policy found
Brought to you by:
mit_warlord,
netbsd
From: Frittella L. <lau...@re...> - 2006-01-11 12:59:00
|
Brian Candler ha scritto: > >Do you have firewalling configured on your Linux box? It could be dropping >incoming ping requests after they've been decrypted. > >Note that successfuly pinging linux to win means that communication must be >working in both directions, since you have to send an ECHO REQUEST in one >direction and get an ECHO RESPONSE in the other for the complete exchange to >work. > > > Oh S***t you are right!!! :) I'm using Firestarter (an iptables frontend) it tell me when a packet begin dropped... but disabling firewall all works well! thanks You are right on the connections type too... it's a n:1:m :) I'll read something about openwrt and I'll try to use (1) IPSEC native tunnel mode solution; Do you think that it isn't enough secure? Probably in the final solution accesspoint and endpoint will be on the same LINUX box and... I'll use certificate insted of PSK Laurento |