Hi All

I am using the setkey command to enable tunnel on netbsd with 3des and sha1.
While browsing www I read a document which said Intel Shiva has to be
configured to IPsec and not the propritery software. I have included my
ipsec.conf

ipsec.conf
add yyy.yyy.yyy.yyy xxx.xxx.xxx.xxx esp 9780 -E 3des-cbc
"abcd1234abcd1234abcd1234" -A hmac-sha1 "abcd1234abcd1234abcd";
add xxx.xxx.xxx.xxx yyy.yyy.yyy.yyy esp 10001 -E 3des-cbc
"abcd1234abcd1234abcd1234" -A hmac-sha1 "abcd1234abcd1234abcd";

spdadd aaa.aaa.aaa.aaa/32 bbb.bbb.bbb.bbb/24 any -P out ipsec
esp/tunnel/yyy.yyy.yyy.yyy-xxx.xxx.xxx.xxx/require;
spdadd bbb.bbb.bbb.bbb/24 aaa.aaa.aaa.aaa/32 any -P in ipsec
esp/tunnel/xxx.xxx.xxx.xxx-yyy.yyy.yyy.yyy/require;

I am not using racoon....

Thanks

Derrick

---------
Hi

I am trying to create a tunnel between NetBSD and Intel Shiva and am unable
to get the tunnel up.

Can you mail me a sample (for both ends)
I need an samlple with 3des and sha1 enabled

However I am able to connect from one NetBSD to the other without any errors

Any help will be appreciated

Thanks


Derrick