On 1048892883 seconds since the Beginning of the UNIX epoch
bob smith wrote:
>

>Is anyone running ipsec netbsd to netbsd and/or windows pc to netbsd?

Yes, I've been running IPsec around my network in transport mode
for NFS using racoon and gssapi to negotiate credentials between
NetBSD hosts of many architectures alpha, i386, and mips.  I think
that I've also used arm32 and sparc64 but can't remember if I set
those machines up.  My NFS server is a PWS433a and right now my
i386 workstation is doing NFS over IPsec over IPv6 while I'm typing
this email.  Same for my PWS500a workstation.  I've been using this
setup for about six months.

The only problem that I had [and fixed] was an alignment problem
in racoon's AES code that caused core dumps on the mips.  I fixed
this in -current and the change was pulled up the the 1.6 branch.

Racoon using gssapi has one outstanding bug of which I am aware:
lib/19206.  But this is quite specific and is only a problem in
the gssapi case.

I don't have any windows machines, so I can't comment on that.

--
    Roland Dowdeswell                      http://www.Imrryr.ORG/~elric/