[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

(usagi-users 02168) Two questions about IPSec & algorithms

To: <usagi-users@xxxxxxxxxxxxxx>
Subject: (usagi-users 02168) Two questions about IPSec & algorithms
From: "Garzon Maldonado, Jesus Javier" <jgarzon@xxxxxxxx>
Date: Tue, 4 Feb 2003 12:37:09 +0100
Reply-to: usagi-users@xxxxxxxxxxxxxx
Thread-index: AcLMNPXTTm8YMAGnQDKxxgBJRfTviA==
Thread-topic: Two questions about IPSec & algorithms

Hello all:

I'm running Red Hat Linux 7.3 with the latest USAGI snap (January 6, 2003). 

First question:
I've built IPSec tunnels between a FreeBSD 4.7 box and the USAGI implementation successfully using 3DES encryption, but when I try to force rinjdael encryption the connections fails because no proposal is chosen. The output showed by Pluto is the following:
unsupported ESP Transform ESP_AES from <peer-address>.

The configuration statement I use for Pluto configuration is esp=aes128-sha1 (I only could find examples with 3des encryption, so I did it as Juanjo's algorithms patch do for FreeS/WAN). Anybody has tried this before?, What should I do?.

Second question:
I've read in the IPSec HOWTO document that, in order to include other algorithms, I should copy the file called patch-int-2.4.19.2.bz2 to linux24/crypto/cipher/, 
and comment out related part of cipher/{Config.in, Makefile}. Just this?,I suppose that patch command must be applied, but I don't know wich options should be employed. 

Thank you very much.

Regards.

Javi Garzon.

Follow-Ups:
- (usagi-users 02169) Re: Two questions about IPSec & algorithms
  - From: Mitsuru KANDA / 神田充

Prev by Date: (usagi-users 02167) Re: routing socket.
Next by Date: (usagi-users 02169) Re: Two questions about IPSec & algorithms
Previous by thread: (usagi-users 02180) Re: Bug: Fails to build - anycast and mobility
Next by thread: (usagi-users 02169) Re: Two questions about IPSec & algorithms
Index(es):
- Date
- Thread