Vpnc on 1.2.2



  • So I compiled vpnc 0.5.3 on another FreeBSD box and moved it and my libraries over to my pfSense firewall.

    Ran it and got the following:

    socket(PF_INET, SOCK_RAW, IPPROTO_ESP): Protocol not supported

    Apparently because ESP stuff is handled in userspace by vpnc. An option suggested was to use –natt-mode force-natt which is meant to do everything via UDP. Doing this (connecting to a remote PIX) gets me a step further, and brings up tun0, however the remote PIX isn't happy and no IP address is assigned to the interface (with a config file that correctly connects me to the VPN on my FreeBSD box, so that's not a source of failure).

    I've read some mention about FAST_IPSEC. But not sure where to go from here.

    Assuming that could be dealt with, what would need to be done to get tun0 recognized as an interface that could be assigned?


Locked