Phillip> Use the network configuration tool in X-Windows...
Forgive me for being obtuse, but _which_ network configuration tool? I don't really see this stuff in "system-config-network-gui."
The tool is system-config-network (or -gui, same thing). Under "IPSec" tab.
It uses Racoon if you choose automatic keying. Anyhow, when you use the tool, it isn't going to work. I'm not sure if configuration it generates is broken, or tools (Racoon) are broken or whatever.
On some versions of RedHatishnes (RHEL4 for sure, maybe some Fedora releases too?), there's bug in initscripts. ifup-ipsec and ifdown-ipsec scrpts need fixing if tunnel mode is used:
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=146169
I've been fighting for several days to get it working. I'm at the edge of giving up on Racoon, and trying out IKE daemon from OpenBSD project. I've posted today about problems I had (different thread, "FC3: IPSec Functionality").
Apperently some people managed to get it working with manual keying (no Racoon). If all else fails, I might go that route after all...
-- Aleksandar Milivojevic <amilivojevic@xxxxxx> Pollard Banknote Limited Systems Administrator 1499 Buffalo Place Tel: (204) 474-2323 ext 276 Winnipeg, MB R3T 1L7
